{ "discoveryVersion": "v1", "parameters": { "callback": { "type": "string", "description": "JSONP", "location": "query" }, "oauth_token": { "description": "OAuth 2.0 token for the current user.", "location": "query", "type": "string" }, "access_token": { "description": "OAuth access token.", "location": "query", "type": "string" }, "fields": { "type": "string", "description": "Selector specifying which fields to include in a partial response.", "location": "query" }, "$.xgafv": { "description": "V1 error format.", "enum": [ "1", "2" ], "type": "string", "enumDescriptions": [ "v1 error format", "v2 error format" ], "location": "query" }, "prettyPrint": { "type": "boolean", "default": "true", "description": "Returns response with indentations and line breaks.", "location": "query" }, "upload_protocol": { "type": "string", "description": "Upload protocol for media (e.g. \"raw\", \"multipart\").", "location": "query" }, "uploadType": { "description": "Legacy upload protocol for media (e.g. \"media\", \"multipart\").", "location": "query", "type": "string" }, "alt": { "description": "Data format for response.", "enum": [ "json", "media", "proto" ], "default": "json", "enumDescriptions": [ "Responses with Content-Type of application/json", "Media download with context-dependent Content-Type", "Responses with Content-Type of application/x-protobuf" ], "type": "string", "location": "query" }, "key": { "description": "API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token.", "location": "query", "type": "string" }, "quotaUser": { "type": "string", "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters.", "location": "query" } }, "kind": "discovery#restDescription", "mtlsRootUrl": "https://beyondcorp.mtls.googleapis.com/", "icons": { "x16": "http://www.google.com/images/icons/product/search-16.gif", "x32": "http://www.google.com/images/icons/product/search-32.gif" }, "ownerName": "Google", "servicePath": "", "basePath": "", "schemas": { "ConnectorOperationMetadata": { "type": "object", "properties": { "createTime": { "type": "string", "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime" }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime", "type": "string" }, "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "verb": { "description": "Output only. Name of the verb executed by the operation.", "readOnly": true, "type": "string" }, "apiVersion": { "readOnly": true, "description": "Output only. API version used to start the operation.", "type": "string" }, "target": { "type": "string", "readOnly": true, "description": "Output only. Server-defined resource path for the target of the operation." }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true } }, "id": "ConnectorOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "RemoteAgentDetails": { "id": "RemoteAgentDetails", "description": "RemoteAgentDetails reflects the details of a remote agent.", "properties": {}, "type": "object" }, "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponseAppConnectionDetails": { "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponseAppConnectionDetails", "description": "Details of the AppConnection.", "properties": { "recentMigVms": { "description": "If type=GCP_REGIONAL_MIG, contains most recent VM instances, like `https://www.googleapis.com/compute/v1/projects/{project_id}/zones/{zone_id}/instances/{instance_id}`.", "items": { "type": "string" }, "type": "array" }, "appConnection": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection", "description": "A BeyondCorp AppConnection in the project." } }, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedDeviceInfo": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedDeviceInfo", "description": "The delegated device information configuration.", "properties": { "outputType": { "description": "Optional. The output type details for the delegated device.", "enum": [ "OUTPUT_TYPE_UNSPECIFIED", "PROTOBUF", "JSON", "NONE" ], "enumDescriptions": [ "The unspecified output type.", "Protobuf output type.", "JSON output type.", "Explicitly disable header output." ], "type": "string" } }, "type": "object" }, "ListAppGatewaysResponse": { "properties": { "nextPageToken": { "description": "A token to retrieve the next page of results, or empty if there are no more results in the list.", "type": "string" }, "unreachable": { "type": "array", "items": { "type": "string" }, "description": "A list of locations that could not be reached." }, "appGateways": { "items": { "$ref": "AppGateway" }, "type": "array", "description": "A list of BeyondCorp AppGateways in the project." } }, "type": "object", "id": "ListAppGatewaysResponse", "description": "Response message for BeyondCorp.ListAppGateways." }, "ReportStatusRequest": { "properties": { "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "type": "string" }, "resourceInfo": { "description": "Required. Resource info of the connector.", "$ref": "ResourceInfo" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way." } }, "type": "object", "id": "ReportStatusRequest", "description": "Request report the connector status." }, "Connector": { "properties": { "name": { "description": "Required. Unique resource name of the connector. The name is ignored when creating a connector.", "type": "string" }, "resourceInfo": { "$ref": "ResourceInfo", "description": "Optional. Resource info of the connector." }, "uid": { "type": "string", "description": "Output only. A unique identifier for the instance generated by the system.", "readOnly": true }, "displayName": { "type": "string", "description": "Optional. An arbitrary user-provided name for the connector. Cannot exceed 64 characters." }, "createTime": { "description": "Output only. Timestamp when the resource was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "updateTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was last modified." }, "state": { "description": "Output only. The current state of the connector.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "CREATED", "UPDATING", "DELETING", "DOWN" ], "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "Connector is being created.", "Connector has been created.", "Connector's configuration is being updated.", "Connector is being deleted.", "Connector is down and may be restored in the future. This happens when CCFE sends ProjectState = OFF." ], "readOnly": true }, "principalInfo": { "description": "Required. Principal information about the Identity of the connector.", "$ref": "PrincipalInfo" }, "labels": { "description": "Optional. Resource labels to represent user provided metadata.", "type": "object", "additionalProperties": { "type": "string" } } }, "type": "object", "id": "Connector", "description": "A BeyondCorp connector resource that represents an application facing component deployed proximal to and with direct access to the application instances. It is used to establish connectivity between the remote enterprise environment and GCP. It initiates connections to the applications and can proxy the data from users over the connection." }, "GoogleCloudBeyondcorpAppconnectionsV1AppConnectionOperationMetadata": { "type": "object", "properties": { "endTime": { "type": "string", "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime" }, "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created.", "type": "string" }, "target": { "readOnly": true, "description": "Output only. Server-defined resource path for the target of the operation.", "type": "string" }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true }, "statusMessage": { "type": "string", "readOnly": true, "description": "Output only. Human-readable status of the operation, if any." }, "verb": { "readOnly": true, "description": "Output only. Name of the verb executed by the operation.", "type": "string" }, "apiVersion": { "type": "string", "description": "Output only. API version used to start the operation.", "readOnly": true } }, "id": "GoogleCloudBeyondcorpAppconnectionsV1AppConnectionOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfigCloudPubSubNotificationConfig": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfigCloudPubSubNotificationConfig", "description": "The configuration for Pub/Sub messaging for the AppConnector.", "properties": { "pubsubSubscription": { "type": "string", "description": "The Pub/Sub subscription the AppConnector uses to receive notifications." } }, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscovery": { "type": "object", "properties": { "apiGateway": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGateway", "description": "Optional. External API configuration." } }, "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscovery", "description": "Settings related to the Service Discovery." }, "ResourceInfo": { "properties": { "status": { "type": "string", "enumDescriptions": [ "Health status is unknown: not initialized or failed to retrieve.", "The resource is healthy.", "The resource is unhealthy.", "The resource is unresponsive.", "Some sub-resources are UNHEALTHY." ], "description": "Overall health status. Overall status is derived based on the status of each sub level resources.", "enum": [ "HEALTH_STATUS_UNSPECIFIED", "HEALTHY", "UNHEALTHY", "UNRESPONSIVE", "DEGRADED" ] }, "time": { "type": "string", "description": "The timestamp to collect the info. It is suggested to be set by the topmost level resource only.", "format": "google-datetime" }, "sub": { "items": { "$ref": "ResourceInfo" }, "type": "array", "description": "List of Info for the sub level resources." }, "resource": { "type": "object", "additionalProperties": { "type": "any", "description": "Properties of the object. Contains field @type with type URL." }, "description": "Specific details for the resource." }, "id": { "description": "Required. Unique Id for the resource.", "type": "string" } }, "type": "object", "id": "ResourceInfo", "description": "ResourceInfo represents the information/status of the associated resource." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaResourceInfo": { "type": "object", "properties": { "id": { "type": "string", "description": "Required. Unique Id for the resource." }, "resource": { "type": "object", "additionalProperties": { "type": "any", "description": "Properties of the object. Contains field @type with type URL." }, "description": "Specific details for the resource. This is for internal use only." }, "sub": { "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaResourceInfo" }, "description": "List of Info for the sub level resources." }, "status": { "description": "Overall health status. Overall status is derived based on the status of each sub level resources.", "enum": [ "HEALTH_STATUS_UNSPECIFIED", "HEALTHY", "UNHEALTHY", "UNRESPONSIVE", "DEGRADED" ], "type": "string", "enumDescriptions": [ "Health status is unknown: not initialized or failed to retrieve.", "The resource is healthy.", "The resource is unhealthy.", "The resource is unresponsive.", "Some sub-resources are UNHEALTHY." ] }, "time": { "format": "google-datetime", "description": "The timestamp to collect the info. It is suggested to be set by the topmost level resource only.", "type": "string" } }, "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaResourceInfo", "description": "ResourceInfo represents the information or status of an app connector resource component that's used to report on various parts of the system. For example, ResourceInfo can be used to convey the status of a remote_agent, including the status of an appgateway for an runtime environment in a container instance." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaLoggingConfig": { "properties": {}, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaLoggingConfig", "description": "Configuration for Cloud Logging." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstream": { "properties": { "network": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamNetwork", "description": "Network to forward traffic to." }, "external": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamExternal", "description": "List of the external endpoints to forward traffic to." }, "proxyProtocol": { "description": "Optional. Enables proxy protocol configuration for the upstream.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaProxyProtocolConfig" }, "egressPolicy": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEgressPolicy", "description": "Optional. Routing policy information." } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstream", "description": "Which upstream resource to forward traffic to." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListSecurityGatewaysResponse": { "properties": { "unreachable": { "items": { "type": "string" }, "type": "array", "description": "A list of locations that could not be reached." }, "securityGateways": { "description": "A list of BeyondCorp SecurityGateway in the project.", "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway" } }, "nextPageToken": { "description": "A token to retrieve the next page of results, or empty if there are no more results in the list.", "type": "string" } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListSecurityGatewaysResponse", "description": "Message for response to listing SecurityGateways." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGatewayOperationDescriptor": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGatewayOperationDescriptor", "description": "API operation descriptor.", "type": "object", "properties": { "path": { "description": "Optional. Contains the URI path fragment where HTTP request is sent.", "type": "string" } } }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGatewayOperationMetadata": { "properties": { "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created.", "type": "string" }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime", "type": "string" }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "statusMessage": { "type": "string", "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true }, "target": { "type": "string", "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have been cancelled successfully have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGatewayOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "ListConnectorsResponse": { "properties": { "nextPageToken": { "type": "string", "description": "A token to retrieve the next page of results, or empty if there are no more results in the list." }, "connectors": { "items": { "$ref": "Connector" }, "type": "array", "description": "A list of BeyondCorp Connectors in the project." }, "unreachable": { "items": { "type": "string" }, "type": "array", "description": "A list of locations that could not be reached." } }, "type": "object", "id": "ListConnectorsResponse", "description": "Response message for BeyondCorp.ListConnectors." }, "CloudPubSubNotificationConfig": { "id": "CloudPubSubNotificationConfig", "description": "The configuration for Pub/Sub messaging for the connector.", "properties": { "pubsubSubscription": { "type": "string", "description": "The Pub/Sub subscription the connector uses to receive notifications." } }, "type": "object" }, "Tunnelv1ProtoTunnelerError": { "type": "object", "properties": { "retryable": { "description": "retryable isn't used for now, but we may want to reuse it in the future.", "type": "boolean" }, "err": { "description": "Original raw error", "type": "string" } }, "id": "Tunnelv1ProtoTunnelerError", "description": "TunnelerError is an error proto for errors returned by the connection manager." }, "AllocatedConnection": { "id": "AllocatedConnection", "description": "Allocated connection of the AppGateway.", "type": "object", "properties": { "pscUri": { "description": "Required. The PSC uri of an allocated connection", "type": "string" }, "ingressPort": { "format": "int32", "description": "Required. The ingress port of an allocated connection", "type": "integer" } } }, "GoogleIamV1SetIamPolicyRequest": { "id": "GoogleIamV1SetIamPolicyRequest", "description": "Request message for `SetIamPolicy` method.", "properties": { "policy": { "$ref": "GoogleIamV1Policy", "description": "REQUIRED: The complete policy to be applied to the `resource`. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Google Cloud services (such as Projects) might reject them." }, "updateMask": { "description": "OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: \"bindings, etag\"`", "format": "google-fieldmask", "type": "string" } }, "type": "object" }, "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfo": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfo", "description": "PrincipalInfo represents an Identity oneof.", "type": "object", "properties": { "serviceAccount": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfoServiceAccount", "description": "A GCP service account." } } }, "ResolveConnectionsResponse": { "properties": { "nextPageToken": { "type": "string", "description": "A token to retrieve the next page of results, or empty if there are no more results in the list." }, "unreachable": { "description": "A list of locations that could not be reached.", "type": "array", "items": { "type": "string" } }, "connectionDetails": { "description": "A list of BeyondCorp Connections with details in the project.", "items": { "$ref": "ConnectionDetails" }, "type": "array" } }, "type": "object", "id": "ResolveConnectionsResponse", "description": "Response message for BeyondCorp.ResolveConnections." }, "Tunnelv1ProtoTunnelerInfo": { "id": "Tunnelv1ProtoTunnelerInfo", "description": "TunnelerInfo contains metadata about tunneler launched by connection manager.", "properties": { "totalRetryCount": { "description": "total_retry_count stores the total number of times the tunneler has been retried by tunManager.", "format": "uint32", "type": "integer" }, "latestErr": { "$ref": "Tunnelv1ProtoTunnelerError", "description": "latest_err stores the Error for the latest tunneler failure. Gets reset everytime the tunneler is retried by tunManager." }, "backoffRetryCount": { "type": "integer", "format": "uint32", "description": "backoff_retry_count stores the number of times the tunneler has been retried by tunManager for current backoff sequence. Gets reset to 0 if time difference between 2 consecutive retries exceeds backoffRetryResetTime." }, "latestRetryTime": { "description": "latest_retry_time stores the time when the tunneler was last restarted.", "format": "google-datetime", "type": "string" }, "id": { "type": "string", "description": "id is the unique id of a tunneler." } }, "type": "object" }, "GoogleCloudBeyondcorpAppconnectionsV1alphaListAppConnectionsResponse": { "properties": { "appConnections": { "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection" }, "description": "A list of BeyondCorp AppConnections in the project." }, "nextPageToken": { "description": "A token to retrieve the next page of results, or empty if there are no more results in the list.", "type": "string" }, "unreachable": { "type": "array", "items": { "type": "string" }, "description": "A list of locations that could not be reached." } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaListAppConnectionsResponse", "description": "Response message for BeyondCorp.ListAppConnections." }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRow": { "properties": { "fieldValues": { "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRowFieldVal" }, "readOnly": true, "description": "Output only. Columns/entries/key-vals in the result." } }, "type": "object", "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRow", "description": "Row of the fetch response consisting of a set of entries." }, "ServiceAccount": { "type": "object", "properties": { "email": { "description": "Email address of the service account.", "type": "string" } }, "id": "ServiceAccount", "description": "ServiceAccount represents a GCP service account." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfig": { "type": "object", "properties": { "pubsubNotification": { "description": "Cloud Pub/Sub Configuration to receive notifications.", "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfigCloudPubSubNotificationConfig" } }, "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfig", "description": "NotificationConfig defines the mechanisms to notify instance agent." }, "AppGatewayOperationMetadata": { "id": "AppGatewayOperationMetadata", "description": "Represents the metadata of the long-running operation.", "type": "object", "properties": { "endTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running.", "type": "string" }, "createTime": { "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "target": { "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true, "type": "string" }, "requestedCancellation": { "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "readOnly": true, "type": "boolean" }, "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "verb": { "description": "Output only. Name of the verb executed by the operation.", "readOnly": true, "type": "string" }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" } } }, "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection": { "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection", "description": "A BeyondCorp AppConnection resource represents a BeyondCorp protected AppConnection to a remote application. It creates all the necessary GCP components needed for creating a BeyondCorp protected AppConnection. Multiple connectors can be authorized for a single AppConnection.", "type": "object", "properties": { "state": { "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "AppConnection is being created.", "AppConnection has been created.", "AppConnection's configuration is being updated.", "AppConnection is being deleted.", "AppConnection is down and may be restored in the future. This happens when CCFE sends ProjectState = OFF." ], "readOnly": true, "description": "Output only. The current state of the AppConnection.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "CREATED", "UPDATING", "DELETING", "DOWN" ] }, "labels": { "description": "Optional. Resource labels to represent user provided metadata.", "type": "object", "additionalProperties": { "type": "string" } }, "createTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was created." }, "type": { "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "TCP Proxy based BeyondCorp AppConnection. API will default to this if unset." ], "description": "Required. The type of network connectivity used by the AppConnection.", "enum": [ "TYPE_UNSPECIFIED", "TCP_PROXY" ] }, "uid": { "type": "string", "description": "Output only. A unique identifier for the instance generated by the system.", "readOnly": true }, "gateway": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionGateway", "description": "Optional. Gateway used by the AppConnection." }, "displayName": { "description": "Optional. An arbitrary user-provided name for the AppConnection. Cannot exceed 64 characters.", "type": "string" }, "satisfiesPzi": { "readOnly": true, "description": "Output only. Reserved for future use.", "type": "boolean" }, "name": { "type": "string", "description": "Required. Unique resource name of the AppConnection. The name is ignored when creating a AppConnection." }, "applicationEndpoint": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionApplicationEndpoint", "description": "Required. Address of the remote application endpoint for the BeyondCorp AppConnection." }, "satisfiesPzs": { "type": "boolean", "description": "Output only. Reserved for future use.", "readOnly": true }, "updateTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was last modified." }, "connectors": { "items": { "type": "string" }, "type": "array", "description": "Optional. List of [google.cloud.beyondcorp.v1main.Connector.name] that are authorized to be associated with this AppConnection." } } }, "GoogleCloudLocationLocation": { "type": "object", "properties": { "locationId": { "type": "string", "description": "The canonical id for this location. For example: `\"us-east1\"`." }, "metadata": { "type": "object", "additionalProperties": { "description": "Properties of the object. Contains field @type with type URL.", "type": "any" }, "description": "Service-specific metadata. For example the available capacity at the given location." }, "displayName": { "type": "string", "description": "The friendly name for this location, typically a nearby city name. For example, \"Tokyo\"." }, "labels": { "type": "object", "additionalProperties": { "type": "string" }, "description": "Cross-service attributes for the location. For example {\"cloud.googleapis.com/region\": \"us-east1\"}" }, "name": { "description": "Resource name for the location, which may vary between implementations. For example: `\"projects/example-project/locations/us-east1\"`", "type": "string" } }, "id": "GoogleCloudLocationLocation", "description": "A resource that represents a Google Cloud location." }, "GoogleIamV1TestIamPermissionsRequest": { "id": "GoogleIamV1TestIamPermissionsRequest", "description": "Request message for `TestIamPermissions` method.", "type": "object", "properties": { "permissions": { "description": "The set of permissions to check for the `resource`. Permissions with wildcards (such as `*` or `storage.*`) are not allowed. For more information see [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).", "type": "array", "items": { "type": "string" } } } }, "GoogleIamV1TestIamPermissionsResponse": { "type": "object", "properties": { "permissions": { "description": "A subset of `TestPermissionsRequest.permissions` that the caller is allowed.", "items": { "type": "string" }, "type": "array" } }, "id": "GoogleIamV1TestIamPermissionsResponse", "description": "Response message for `TestIamPermissions` method." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorInstanceConfig": { "type": "object", "properties": { "sequenceNumber": { "description": "Required. A monotonically increasing number generated and maintained by the API provider. Every time a config changes in the backend, the sequenceNumber should be bumped up to reflect the change.", "format": "int64", "type": "string" }, "notificationConfig": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaNotificationConfig", "description": "NotificationConfig defines the notification mechanism that the remote instance should subscribe to in order to receive notification." }, "instanceConfig": { "description": "The SLM instance agent configuration.", "type": "object", "additionalProperties": { "description": "Properties of the object. Contains field @type with type URL.", "type": "any" } }, "imageConfig": { "description": "ImageConfig defines the GCR images to run for the remote agent's control plane.", "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaImageConfig" } }, "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorInstanceConfig", "description": "AppConnectorInstanceConfig defines the instance config of a AppConnector." }, "GoogleTypeExpr": { "properties": { "title": { "type": "string", "description": "Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression." }, "expression": { "type": "string", "description": "Textual representation of an expression in Common Expression Language syntax." }, "description": { "type": "string", "description": "Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI." }, "location": { "type": "string", "description": "Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file." } }, "type": "object", "id": "GoogleTypeExpr", "description": "Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: \"Summary size limit\" description: \"Determines if a summary is less than 100 chars\" expression: \"document.summary.size() \u003c 100\" Example (Equality): title: \"Requestor is owner\" description: \"Determines if requestor is the document owner\" expression: \"document.owner == request.auth.claims.email\" Example (Logic): title: \"Public documents\" description: \"Determine whether the document should be publicly visible\" expression: \"document.type != 'private' && document.type != 'internal'\" Example (Data Manipulation): title: \"Notification string\" description: \"Create a notification string with a timestamp.\" expression: \"'New message received at ' + string(document.create_time)\" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaProxyProtocolConfig": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaProxyProtocolConfig", "description": "The configuration for the proxy.", "properties": { "allowedClientHeaders": { "type": "array", "items": { "type": "string" }, "description": "Optional. List of the allowed client header names." }, "contextualHeaders": { "description": "Optional. Configuration for the contextual headers.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeaders" }, "gatewayIdentity": { "description": "Optional. The security gateway identity configuration.", "enum": [ "GATEWAY_IDENTITY_UNSPECIFIED", "RESOURCE_NAME" ], "type": "string", "enumDescriptions": [ "Unspecified gateway identity.", "Resource name for gateway identity, in the format: projects/{project_id}/locations/{location_id}/securityGateways/{security_gateway_id}" ] }, "clientIp": { "description": "Optional. Client IP configuration. The client IP address is included if true.", "type": "boolean" }, "metadataHeaders": { "type": "object", "additionalProperties": { "type": "string" }, "description": "Optional. Custom resource specific headers along with the values. The names should conform to RFC 9110: \u003eField names can contain alphanumeric characters, hyphens, and periods, can contain only ASCII-printable characters and tabs, and must start with a letter." } }, "type": "object" }, "GoogleIamV1Policy": { "id": "GoogleIamV1Policy", "description": "An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members`, or principals, to a single `role`. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). **JSON example:** ``` { \"bindings\": [ { \"role\": \"roles/resourcemanager.organizationAdmin\", \"members\": [ \"user:mike@example.com\", \"group:admins@example.com\", \"domain:google.com\", \"serviceAccount:my-project-id@appspot.gserviceaccount.com\" ] }, { \"role\": \"roles/resourcemanager.organizationViewer\", \"members\": [ \"user:eve@example.com\" ], \"condition\": { \"title\": \"expirable access\", \"description\": \"Does not grant access after Sep 2020\", \"expression\": \"request.time \u003c timestamp('2020-10-01T00:00:00.000Z')\", } } ], \"etag\": \"BwWWja0YfJA=\", \"version\": 3 } ``` **YAML example:** ``` bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time \u003c timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 ``` For a description of IAM and its features, see the [IAM documentation](https://cloud.google.com/iam/docs/).", "properties": { "version": { "type": "integer", "description": "Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "format": "int32" }, "auditConfigs": { "description": "Specifies cloud audit logging configuration for this policy.", "type": "array", "items": { "$ref": "GoogleIamV1AuditConfig" } }, "bindings": { "items": { "$ref": "GoogleIamV1Binding" }, "type": "array", "description": "Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`." }, "etag": { "type": "string", "description": "`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.", "format": "byte" } }, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaInternetGateway": { "type": "object", "properties": { "assignedIps": { "items": { "type": "string" }, "type": "array", "description": "Output only. List of IP addresses assigned to the Cloud NAT.", "readOnly": true } }, "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaInternetGateway", "description": "Represents the Internet Gateway configuration." }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaListInsightsResponse": { "properties": { "nextPageToken": { "description": "Output only. Next page token to be fetched. Set to empty or NULL if there are no more pages available.", "readOnly": true, "type": "string" }, "insights": { "description": "Output only. List of all insights.", "readOnly": true, "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsight" }, "type": "array" } }, "type": "object", "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaListInsightsResponse", "description": "The response for the list of insights." }, "GoogleCloudBeyondcorpPartnerservicesV1mainPartnerServiceOperationMetadata": { "id": "GoogleCloudBeyondcorpPartnerservicesV1mainPartnerServiceOperationMetadata", "description": "Represents the metadata of the long-running operation.", "properties": { "endTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running.", "type": "string" }, "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created.", "type": "string" }, "target": { "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true, "type": "string" }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the caller has requested cancellation of the operation. Operations that have successfully been cancelled have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "readOnly": true, "description": "Output only. API version used to start the operation.", "type": "string" }, "statusMessage": { "type": "string", "readOnly": true, "description": "Output only. Human-readable status of the operation, if any." } }, "deprecated": true, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamNetwork": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamNetwork", "description": "Network to forward traffic to.", "type": "object", "properties": { "name": { "type": "string", "description": "Required. Network name is of the format: `projects/{project}/global/networks/{network}" } } }, "GoogleCloudBeyondcorpAppconnectorsV1alphaRemoteAgentDetails": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaRemoteAgentDetails", "description": "RemoteAgentDetails reflects the details of a remote agent.", "properties": {}, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGateway": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGateway", "description": "If Service Discovery is done through API, defines its settings.", "type": "object", "properties": { "resourceOverride": { "description": "Optional. Enables fetching resource model updates to alter service behavior per Chrome profile.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscoveryApiGatewayOperationDescriptor" } } }, "AppGateway": { "id": "AppGateway", "description": "A BeyondCorp AppGateway resource represents a BeyondCorp protected AppGateway to a remote application. It creates all the necessary GCP components needed for creating a BeyondCorp protected AppGateway. Multiple connectors can be authorised for a single AppGateway.", "type": "object", "properties": { "uid": { "type": "string", "description": "Output only. A unique identifier for the instance generated by the system.", "readOnly": true }, "allocatedConnections": { "type": "array", "items": { "$ref": "AllocatedConnection" }, "readOnly": true, "description": "Output only. A list of connections allocated for the Gateway" }, "displayName": { "description": "Optional. An arbitrary user-provided name for the AppGateway. Cannot exceed 64 characters.", "type": "string" }, "satisfiesPzi": { "type": "boolean", "readOnly": true, "description": "Output only. Reserved for future use." }, "name": { "type": "string", "description": "Required. Unique resource name of the AppGateway. The name is ignored when creating an AppGateway." }, "satisfiesPzs": { "readOnly": true, "description": "Output only. Reserved for future use.", "type": "boolean" }, "state": { "enumDescriptions": [ "Default value. This value is unused.", "AppGateway is being created.", "AppGateway has been created.", "AppGateway's configuration is being updated.", "AppGateway is being deleted.", "AppGateway is down and may be restored in the future. This happens when CCFE sends ProjectState = OFF." ], "type": "string", "readOnly": true, "description": "Output only. The current state of the AppGateway.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "CREATED", "UPDATING", "DELETING", "DOWN" ] }, "uri": { "type": "string", "readOnly": true, "description": "Output only. Server-defined URI for this resource." }, "labels": { "description": "Optional. Resource labels to represent user provided metadata.", "type": "object", "additionalProperties": { "type": "string" } }, "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was created.", "type": "string" }, "hostType": { "description": "Required. The type of hosting used by the AppGateway.", "enum": [ "HOST_TYPE_UNSPECIFIED", "GCP_REGIONAL_MIG" ], "enumDescriptions": [ "Default value. This value is unused.", "AppGateway hosted in a GCP regional managed instance group." ], "type": "string" }, "type": { "description": "Required. The type of network connectivity used by the AppGateway.", "enum": [ "TYPE_UNSPECIFIED", "TCP_PROXY" ], "enumDescriptions": [ "Default value. This value is unused.", "TCP Proxy based BeyondCorp Connection. API will default to this if unset." ], "type": "string" }, "updateTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was last modified." } } }, "GoogleCloudBeyondcorpAppgatewaysV1AppGatewayOperationMetadata": { "id": "GoogleCloudBeyondcorpAppgatewaysV1AppGatewayOperationMetadata", "description": "Represents the metadata of the long-running operation.", "type": "object", "properties": { "verb": { "type": "string", "readOnly": true, "description": "Output only. Name of the verb executed by the operation." }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "target": { "readOnly": true, "description": "Output only. Server-defined resource path for the target of the operation.", "type": "string" }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "readOnly": true }, "createTime": { "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "endTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running.", "type": "string" } } }, "ConnectorInstanceConfig": { "id": "ConnectorInstanceConfig", "description": "ConnectorInstanceConfig defines the instance config of a connector.", "type": "object", "properties": { "imageConfig": { "$ref": "ImageConfig", "description": "ImageConfig defines the GCR images to run for the remote agent's control plane." }, "sequenceNumber": { "description": "Required. A monotonically increasing number generated and maintained by the API provider. Every time a config changes in the backend, the sequenceNumber should be bumped up to reflect the change.", "format": "int64", "type": "string" }, "notificationConfig": { "description": "NotificationConfig defines the notification mechanism that the remote instance should subscribe to in order to receive notification.", "$ref": "NotificationConfig" }, "instanceConfig": { "description": "The SLM instance agent configuration.", "type": "object", "additionalProperties": { "description": "Properties of the object. Contains field @type with type URL.", "type": "any" } } } }, "ConnectionOperationMetadata": { "type": "object", "properties": { "target": { "type": "string", "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true }, "requestedCancellation": { "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true, "type": "boolean" }, "verb": { "description": "Output only. Name of the verb executed by the operation.", "readOnly": true, "type": "string" }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "statusMessage": { "readOnly": true, "description": "Output only. Human-readable status of the operation, if any.", "type": "string" }, "endTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running." }, "createTime": { "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime", "type": "string" } }, "id": "ConnectionOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "CloudSecurityZerotrustApplinkAppConnectorProtoConnectorDetails": { "properties": {}, "type": "object", "id": "CloudSecurityZerotrustApplinkAppConnectorProtoConnectorDetails", "description": "ConnectorDetails reflects the details of a connector." }, "CloudSecurityZerotrustApplinkAppConnectorProtoConnectionConfig": { "properties": { "project": { "description": "project represents the consumer project the connection belongs to.", "type": "string" }, "gateway": { "items": { "$ref": "CloudSecurityZerotrustApplinkAppConnectorProtoGateway" }, "type": "array", "description": "gateway lists all instances running a gateway in GCP. They all connect to a connector on the host." }, "applicationName": { "type": "string", "description": "application_name represents the given name of the application the connection is connecting with." }, "tunnelsPerGateway": { "format": "uint32", "description": "tunnels_per_gateway reflects the number of tunnels between a connector and a gateway.", "type": "integer" }, "name": { "description": "name is the unique ID for each connection. TODO(b/190732451) returns connection name from user-specified name in config. Now, name = ${application_name}:${application_endpoint}", "type": "string" }, "applicationEndpoint": { "type": "string", "description": "application_endpoint is the endpoint of the application the form of host:port. For example, \"localhost:80\"." }, "userPort": { "format": "int32", "description": "user_port specifies the reserved port on gateways for user connections.", "type": "integer" } }, "type": "object", "id": "CloudSecurityZerotrustApplinkAppConnectorProtoConnectionConfig", "description": "ConnectionConfig represents a Connection Configuration object." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfoServiceAccount": { "properties": { "email": { "type": "string", "description": "Email address of the service account." } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfoServiceAccount", "description": "ServiceAccount represents a GCP service account." }, "ConnectionDetails": { "properties": { "connection": { "$ref": "Connection", "description": "A BeyondCorp Connection in the project." }, "recentMigVms": { "description": "If type=GCP_REGIONAL_MIG, contains most recent VM instances, like \"https://www.googleapis.com/compute/v1/projects/{project_id}/zones/{zone_id}/instances/{instance_id}\".", "type": "array", "items": { "type": "string" } } }, "type": "object", "id": "ConnectionDetails", "description": "Details of the Connection." }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadata": { "type": "object", "properties": { "displayName": { "type": "string", "readOnly": true, "description": "Output only. Common name of the insight." }, "aggregations": { "readOnly": true, "description": "Output only. List of aggregation types available for insight.", "type": "array", "items": { "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "type": "string", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ] } }, "category": { "description": "Output only. Category of the insight.", "readOnly": true, "type": "string" }, "groups": { "description": "Output only. List of groupings available for insight.", "readOnly": true, "items": { "type": "string" }, "type": "array" }, "type": { "type": "string", "description": "Output only. Type of the insight. It is metadata describing whether the insight is a metric (e.g. count) or a report (e.g. list, status).", "readOnly": true }, "subCategory": { "description": "Output only. Sub-Category of the insight.", "readOnly": true, "type": "string" }, "fields": { "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadataField" }, "readOnly": true, "description": "Output only. List of fields available for insight." } }, "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadata", "description": "Insight filters, groupings and aggregations that can be applied for the insight. Examples: aggregations, groups, field filters." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeaders": { "type": "object", "properties": { "userInfo": { "description": "Optional. User details.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedUserInfo" }, "groupInfo": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedGroupInfo", "description": "Optional. Group details." }, "deviceInfo": { "description": "Optional. The device information configuration.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedDeviceInfo" }, "outputType": { "type": "string", "enumDescriptions": [ "The unspecified output type.", "Protobuf output type.", "JSON output type.", "Explicitly disable header output." ], "description": "Optional. Default output type for all enabled headers.", "enum": [ "OUTPUT_TYPE_UNSPECIFIED", "PROTOBUF", "JSON", "NONE" ] } }, "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeaders", "description": "Contextual headers configuration." }, "GoogleLongrunningListOperationsResponse": { "id": "GoogleLongrunningListOperationsResponse", "description": "The response message for Operations.ListOperations.", "properties": { "nextPageToken": { "description": "The standard List next-page token.", "type": "string" }, "unreachable": { "type": "array", "items": { "type": "string" }, "description": "Unordered list. Unreachable resources. Populated when the request sets `ListOperationsRequest.return_partial_success` and reads across collections. For example, when attempting to list all resources across all supported locations." }, "operations": { "type": "array", "items": { "$ref": "GoogleLongrunningOperation" }, "description": "A list of operations that matches the specified filter in the request." } }, "type": "object" }, "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription": { "type": "object", "properties": { "state": { "enumDescriptions": [ "Default value. This value is unused.", "Represents an active subscription.", "Represents an upcomming subscription.", "Represents a completed subscription." ], "type": "string", "readOnly": true, "description": "Output only. The current state of the subscription.", "enum": [ "STATE_UNSPECIFIED", "ACTIVE", "INACTIVE", "COMPLETED" ] }, "csgCustomer": { "type": "boolean", "description": "Optional. Whether the subscription is being created as part of the Citrix flow. If this field is set to true, the subscription should have both the start_time and end_time set in the request and the billing account used will be the Citrix master billing account regardless of what its set to in the request. This field can only be set to true in create requests." }, "billingAccount": { "description": "Optional. Name of the billing account in the format. e.g. billingAccounts/123456-123456-123456 Required if Subscription is of Paid type.", "type": "string" }, "createTime": { "type": "string", "description": "Output only. Create time of the subscription.", "readOnly": true, "format": "google-datetime" }, "sku": { "description": "Required. SKU of subscription.", "enum": [ "SKU_UNSPECIFIED", "BCE_STANDARD_SKU" ], "enumDescriptions": [ "Default value. This value is unused.", "Represents BeyondCorp Standard SKU." ], "type": "string" }, "autoRenewEnabled": { "type": "boolean", "readOnly": true, "description": "Output only. Represents that, if subscription will renew or end when the term ends." }, "type": { "description": "Required. Type of subscription.", "enum": [ "TYPE_UNSPECIFIED", "TRIAL", "PAID", "ALLOWLIST" ], "enumDescriptions": [ "Default value. This value is unused.", "Represents a trial subscription.", "Represents a paid subscription.", "Reresents an allowlisted subscription." ], "type": "string" }, "seatCount": { "format": "int64", "description": "Optional. Number of seats in the subscription.", "type": "string" }, "name": { "type": "string", "description": "Identifier. Unique resource name of the Subscription. The name is ignored when creating a subscription." }, "subscriberType": { "description": "Output only. Type of subscriber.", "enum": [ "SUBSCRIBER_TYPE_UNSPECIFIED", "ONLINE", "OFFLINE", "CEP_TRIAL" ], "enumDescriptions": [ "Default value. This value is unused.", "Represents an online subscription.", "Represents an offline subscription.", "Represents a trial subscription. This maps to the 'TRIAL' subscriber_type in the Entitler proto (google3/identity/cloud/contextawareaccess/billing/proto/enums.proto), but is named 'CEP_TRIAL' here to avoid a name collision with the 'Type' enum defined above." ], "type": "string", "readOnly": true }, "startTime": { "type": "string", "description": "Optional. Start time of the subscription.", "format": "google-datetime" }, "endTime": { "description": "Optional. End time of the subscription.", "format": "google-datetime", "type": "string" } }, "id": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription", "description": "A BeyondCorp Subscription resource represents BeyondCorp Enterprise Subscription. BeyondCorp Enterprise Subscription enables BeyondCorp Enterprise permium features for an organization." }, "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionApplicationEndpoint": { "properties": { "host": { "description": "Required. Hostname or IP address of the remote application endpoint.", "type": "string" }, "port": { "description": "Required. Port of the remote application endpoint.", "format": "int32", "type": "integer" } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionApplicationEndpoint", "description": "ApplicationEndpoint represents a remote application endpoint." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaResolveInstanceConfigResponse": { "properties": { "instanceConfig": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorInstanceConfig", "description": "AppConnectorInstanceConfig." } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaResolveInstanceConfigResponse", "description": "Response message for BeyondCorp.ResolveInstanceConfig." }, "GoogleCloudBeyondcorpSecuritygatewaysV1SecurityGatewayOperationMetadata": { "properties": { "createTime": { "type": "string", "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime" }, "endTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running." }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "readOnly": true, "description": "Output only. API version used to start the operation.", "type": "string" }, "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "target": { "type": "string", "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have been cancelled successfully have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1SecurityGatewayOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadataField": { "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadataField", "description": "Field metadata. Commonly understandable name and description for the field. Multiple such fields constitute the Insight.", "properties": { "filterAlias": { "type": "string", "description": "Output only. Field name to be used in filter while requesting configured insight filtered on this field.", "readOnly": true }, "groupable": { "type": "boolean", "description": "Output only. Indicates whether the field can be used for grouping in custom grouping request.", "readOnly": true }, "filterable": { "description": "Output only. Indicates whether the field can be used for filtering.", "readOnly": true, "type": "boolean" }, "displayName": { "type": "string", "description": "Output only. Name of the field.", "readOnly": true }, "id": { "type": "string", "readOnly": true, "description": "Output only. Field id for which this is the metadata." }, "description": { "readOnly": true, "description": "Output only. Description of the field.", "type": "string" } }, "type": "object" }, "ApplicationEndpoint": { "id": "ApplicationEndpoint", "description": "ApplicationEndpoint represents a remote application endpoint.", "type": "object", "properties": { "host": { "description": "Required. Hostname or IP address of the remote application endpoint.", "type": "string" }, "port": { "type": "integer", "description": "Required. Port of the remote application endpoint.", "format": "int32" } } }, "NotificationConfig": { "id": "NotificationConfig", "description": "NotificationConfig defines the mechanisms to notify instance agent.", "type": "object", "properties": { "pubsubNotification": { "description": "Pub/Sub topic for Connector to subscribe and receive notifications from `projects/{project}/topics/{pubsub_topic}`", "$ref": "CloudPubSubNotificationConfig" } } }, "GoogleCloudBeyondcorpAppconnectorsV1alphaListAppConnectorsResponse": { "type": "object", "properties": { "nextPageToken": { "description": "A token to retrieve the next page of results, or empty if there are no more results in the list.", "type": "string" }, "unreachable": { "description": "A list of locations that could not be reached.", "items": { "type": "string" }, "type": "array" }, "appConnectors": { "items": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector" }, "type": "array", "description": "A list of BeyondCorp AppConnectors in the project." } }, "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaListAppConnectorsResponse", "description": "Response message for BeyondCorp.ListAppConnectors." }, "GoogleLongrunningOperation": { "id": "GoogleLongrunningOperation", "description": "This resource represents a long-running operation that is the result of a network API call.", "properties": { "response": { "type": "object", "additionalProperties": { "description": "Properties of the object. Contains field @type with type URL.", "type": "any" }, "description": "The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`." }, "done": { "description": "If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.", "type": "boolean" }, "name": { "description": "The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.", "type": "string" }, "error": { "description": "The error result of the operation in case of failure or cancellation.", "$ref": "GoogleRpcStatus" }, "metadata": { "description": "Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.", "type": "object", "additionalProperties": { "type": "any", "description": "Properties of the object. Contains field @type with type URL." } } }, "type": "object" }, "GoogleCloudBeyondcorpAppconnectorsV1RemoteAgentDetails": { "id": "GoogleCloudBeyondcorpAppconnectorsV1RemoteAgentDetails", "description": "RemoteAgentDetails reflects the details of a remote agent.", "type": "object", "properties": {} }, "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaListSubscriptionsResponse": { "type": "object", "properties": { "nextPageToken": { "type": "string", "description": "A token to retrieve the next page of results, or empty if there are no more results in the list." }, "subscriptions": { "description": "A list of BeyondCorp Subscriptions in the organization.", "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" } } }, "id": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaListSubscriptionsResponse", "description": "Response message for BeyondCorp.ListSubscriptions." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpointMatcher": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpointMatcher", "description": "EndpointMatcher contains the information of the endpoint that will match the application.", "type": "object", "properties": { "ports": { "items": { "type": "integer", "format": "int32" }, "type": "array", "description": "Required. The ports of the application." }, "hostname": { "type": "string", "description": "Required. Hostname of the application." } } }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaCustomGrouping": { "properties": { "groupFields": { "description": "Required. Fields to be used for grouping. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for declaring the fields to be grouped-by here.", "type": "array", "items": { "type": "string" } }, "fieldFilter": { "description": "Optional. Filterable parameters to be added to the grouping clause. Available fields could be fetched by calling insight list and get APIs in `BASIC` view. `=` is the only comparison operator supported. `AND` is the only logical operator supported. Usage: field_filter=\"fieldName1=fieldVal1 AND fieldName2=fieldVal2\". NOTE: Only `AND` conditions are allowed. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for the filtering the corresponding fields in this filter field. (These expressions are based on the filter language described at https://google.aip.dev/160).", "type": "string" } }, "type": "object", "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaCustomGrouping", "description": "Customised grouping option that allows setting the group_by fields and also the filters togather for a configured insight request." }, "GoogleIamV1AuditConfig": { "type": "object", "properties": { "service": { "type": "string", "description": "Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services." }, "auditLogConfigs": { "description": "The configuration for logging of each type of permission.", "type": "array", "items": { "$ref": "GoogleIamV1AuditLogConfig" } } }, "id": "GoogleIamV1AuditConfig", "description": "Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { \"audit_configs\": [ { \"service\": \"allServices\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" }, { \"log_type\": \"ADMIN_READ\" } ] }, { \"service\": \"sampleservice.googleapis.com\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\" }, { \"log_type\": \"DATA_WRITE\", \"exempted_members\": [ \"user:aliya@example.com\" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging." }, "CloudSecurityZerotrustApplinkLogagentProtoLogAgentDetails": { "type": "object", "properties": {}, "id": "CloudSecurityZerotrustApplinkLogagentProtoLogAgentDetails", "description": "LogAgentDetails reflects the details of a log agent." }, "CloudSecurityZerotrustApplinkAppConnectorProtoGateway": { "id": "CloudSecurityZerotrustApplinkAppConnectorProtoGateway", "description": "Gateway represents a GCE VM Instance endpoint for use by IAP TCP.", "type": "object", "properties": { "project": { "description": "project is the tenant project the gateway belongs to. Different from the project in the connection, it is a BeyondCorpAPI internally created project to manage all the gateways. It is sharing the same network with the consumer project user owned. It is derived from the gateway URL. For example, project=${project} assuming a gateway URL. https://www.googleapis.com/compute/${version}/projects/${project}/zones/${zone}/instances/${instance}", "type": "string" }, "zone": { "type": "string", "description": "zone represents the zone the instance belongs. It is derived from the gateway URL. For example, zone=${zone} assuming a gateway URL. https://www.googleapis.com/compute/${version}/projects/${project}/zones/${zone}/instances/${instance}" }, "interface": { "description": "interface specifies the network interface of the gateway to connect to.", "type": "string" }, "selfLink": { "description": "self_link is the gateway URL in the form https://www.googleapis.com/compute/${version}/projects/${project}/zones/${zone}/instances/${instance}", "type": "string" }, "name": { "description": "name is the name of an instance running a gateway. It is the unique ID for a gateway. All gateways under the same connection have the same prefix. It is derived from the gateway URL. For example, name=${instance} assuming a gateway URL. https://www.googleapis.com/compute/${version}/projects/${project}/zones/${zone}/instances/${instance}", "type": "string" }, "port": { "type": "integer", "description": "port specifies the port of the gateway for tunnel connections from the connectors.", "format": "uint32" } } }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpoint": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpoint", "description": "Internet Gateway endpoint to forward traffic to.", "type": "object", "properties": { "hostname": { "type": "string", "description": "Required. Hostname of the endpoint." }, "port": { "description": "Required. Port of the endpoint.", "format": "int32", "type": "integer" } } }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsight": { "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsight", "description": "The Insight object with configuration that was returned and actual list of records.", "properties": { "name": { "readOnly": true, "description": "Output only. The insight resource name. e.g. `organizations/{organization_id}/locations/{location_id}/insights/{insight_id}` OR `projects/{project_id}/locations/{location_id}/insights/{insight_id}`.", "type": "string" }, "metadata": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsightMetadata", "description": "Output only. Metadata for the Insight.", "readOnly": true }, "appliedConfig": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaAppliedConfig", "readOnly": true, "description": "Output only. Applied insight config to generate the result data rows." }, "rows": { "description": "Output only. Result rows returned containing the required value(s).", "readOnly": true, "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRow" }, "type": "array" } }, "type": "object" }, "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaCancelSubscriptionResponse": { "properties": { "effectiveCancellationTime": { "type": "string", "description": "Time when the cancellation will become effective", "format": "google-datetime" } }, "type": "object", "id": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaCancelSubscriptionResponse", "description": "Response message for BeyondCorp.CancelSubscription" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaHub": { "type": "object", "properties": { "internetGateway": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaInternetGateway", "description": "Optional. Internet Gateway configuration." } }, "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaHub", "description": "The Hub message contains information pertaining to the regional data path deployments." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaContainerHealthDetails": { "type": "object", "properties": { "errorMsg": { "type": "string", "description": "The latest error message." }, "expectedConfigVersion": { "description": "The version of the expected config.", "type": "string" }, "currentConfigVersion": { "description": "The version of the current config.", "type": "string" }, "extendedStatus": { "description": "The extended status. Such as ExitCode, StartedAt, FinishedAt, etc.", "type": "object", "additionalProperties": { "type": "string" } } }, "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaContainerHealthDetails", "description": "ContainerHealthDetails reflects the health details of a container." }, "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaRestartSubscriptionResponse": { "type": "object", "properties": {}, "id": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaRestartSubscriptionResponse", "description": "Response message for BeyondCorp.RestartSubscription" }, "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorOperationMetadata": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorOperationMetadata", "description": "Represents the metadata of the long-running operation.", "properties": { "target": { "type": "string", "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true }, "requestedCancellation": { "readOnly": true, "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "type": "boolean" }, "statusMessage": { "type": "string", "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true }, "verb": { "readOnly": true, "description": "Output only. Name of the verb executed by the operation.", "type": "string" }, "apiVersion": { "type": "string", "readOnly": true, "description": "Output only. API version used to start the operation." }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime", "type": "string" }, "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created.", "type": "string" } }, "type": "object" }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway": { "properties": { "createTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was created." }, "updateTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was last modified.", "type": "string" }, "proxyProtocolConfig": { "description": "Optional. Shared proxy configuration for all apps.", "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaProxyProtocolConfig" }, "serviceDiscovery": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaServiceDiscovery", "description": "Optional. Settings related to the Service Discovery." }, "externalIps": { "readOnly": true, "description": "Output only. IP addresses that will be used for establishing connection to the endpoints.", "type": "array", "items": { "type": "string" } }, "state": { "readOnly": true, "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "SecurityGateway is being created.", "SecurityGateway is being updated.", "SecurityGateway is being deleted.", "SecurityGateway is running.", "SecurityGateway is down and may be restored in the future.", "SecurityGateway encountered an error and is in an indeterministic state." ], "description": "Output only. The operational state of the SecurityGateway.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "UPDATING", "DELETING", "RUNNING", "DOWN", "ERROR" ] }, "hubs": { "description": "Optional. Map of Hubs that represents regional data path deployment with GCP region as a key.", "type": "object", "additionalProperties": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaHub" } }, "name": { "description": "Identifier. Name of the resource.", "type": "string" }, "delegatingServiceAccount": { "description": "Output only. Service account used for operations that involve resources in consumer projects.", "readOnly": true, "type": "string" }, "displayName": { "description": "Optional. An arbitrary user-provided name for the SecurityGateway. Cannot exceed 64 characters.", "type": "string" }, "logging": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaLoggingConfig", "description": "Optional. Configuration for Cloud Logging. If this field is present, the logging will be enabled." } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway", "description": "The information about a security gateway resource." }, "ImageConfig": { "id": "ImageConfig", "description": "ImageConfig defines the control plane images to run.", "type": "object", "properties": { "targetImage": { "type": "string", "description": "The initial image the remote agent will attempt to run for the control plane." }, "stableImage": { "description": "The stable image that the remote agent will fallback to if the target image fails.", "type": "string" } } }, "GoogleLongrunningCancelOperationRequest": { "properties": {}, "type": "object", "id": "GoogleLongrunningCancelOperationRequest", "description": "The request message for Operations.CancelOperation." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedGroupInfo": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedGroupInfo", "description": "The delegated group configuration details.", "properties": { "outputType": { "enumDescriptions": [ "The unspecified output type.", "Protobuf output type.", "JSON output type.", "Explicitly disable header output." ], "type": "string", "description": "Optional. The output type of the delegated group information.", "enum": [ "OUTPUT_TYPE_UNSPECIFIED", "PROTOBUF", "JSON", "NONE" ] } }, "type": "object" }, "Connection": { "id": "Connection", "description": "A BeyondCorp Connection resource represents a BeyondCorp protected connection to a remote application. It creates all the necessary GCP components needed for creating a BeyondCorp protected connection. Multiple connectors can be authorised for a single Connection.", "properties": { "type": { "description": "Required. The type of network connectivity used by the connection.", "enum": [ "TYPE_UNSPECIFIED", "TCP_PROXY" ], "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "TCP Proxy based BeyondCorp Connection. API will default to this if unset." ] }, "updateTime": { "type": "string", "description": "Output only. Timestamp when the resource was last modified.", "readOnly": true, "format": "google-datetime" }, "createTime": { "description": "Output only. Timestamp when the resource was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "labels": { "type": "object", "additionalProperties": { "type": "string" }, "description": "Optional. Resource labels to represent user provided metadata." }, "state": { "description": "Output only. The current state of the connection.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "CREATED", "UPDATING", "DELETING", "DOWN" ], "enumDescriptions": [ "Default value. This value is unused.", "Connection is being created.", "Connection has been created.", "Connection's configuration is being updated.", "Connection is being deleted.", "Connection is down and may be restored in the future. This happens when CCFE sends ProjectState = OFF." ], "type": "string", "readOnly": true }, "connectors": { "description": "Optional. List of [google.cloud.beyondcorp.v1main.Connector.name] that are authorised to be associated with this Connection.", "items": { "type": "string" }, "type": "array" }, "name": { "description": "Required. Unique resource name of the connection. The name is ignored when creating a connection.", "type": "string" }, "applicationEndpoint": { "description": "Required. Address of the remote application endpoint for the BeyondCorp Connection.", "$ref": "ApplicationEndpoint" }, "displayName": { "type": "string", "description": "Optional. An arbitrary user-provided name for the connection. Cannot exceed 64 characters." }, "uid": { "type": "string", "readOnly": true, "description": "Output only. A unique identifier for the instance generated by the system." }, "gateway": { "description": "Optional. Gateway used by the connection.", "$ref": "Gateway" } }, "type": "object" }, "GoogleCloudLocationListLocationsResponse": { "properties": { "locations": { "description": "A list of locations that matches the specified filter in the request.", "type": "array", "items": { "$ref": "GoogleCloudLocationLocation" } }, "nextPageToken": { "description": "The standard List next-page token.", "type": "string" } }, "type": "object", "id": "GoogleCloudLocationListLocationsResponse", "description": "The response message for Locations.ListLocations." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector", "description": "A BeyondCorp connector resource that represents an application facing component deployed proximal to and with direct access to the application instances. It is used to establish connectivity between the remote enterprise environment and GCP. It initiates connections to the applications and can proxy the data from users over the connection.", "type": "object", "properties": { "resourceInfo": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaResourceInfo", "description": "Optional. Resource info of the connector." }, "name": { "type": "string", "description": "Required. Unique resource name of the AppConnector. The name is ignored when creating a AppConnector." }, "displayName": { "description": "Optional. An arbitrary user-provided name for the AppConnector. Cannot exceed 64 characters.", "type": "string" }, "uid": { "readOnly": true, "description": "Output only. A unique identifier for the instance generated by the system.", "type": "string" }, "updateTime": { "type": "string", "description": "Output only. Timestamp when the resource was last modified.", "readOnly": true, "format": "google-datetime" }, "createTime": { "description": "Output only. Timestamp when the resource was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "labels": { "description": "Optional. Resource labels to represent user provided metadata.", "type": "object", "additionalProperties": { "type": "string" } }, "principalInfo": { "description": "Required. Principal information about the Identity of the AppConnector.", "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnectorPrincipalInfo" }, "state": { "readOnly": true, "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "AppConnector is being created.", "AppConnector has been created.", "AppConnector's configuration is being updated.", "AppConnector is being deleted.", "AppConnector is down and may be restored in the future. This happens when CCFE sends ProjectState = OFF." ], "description": "Output only. The current state of the AppConnector.", "enum": [ "STATE_UNSPECIFIED", "CREATING", "CREATED", "UPDATING", "DELETING", "DOWN" ] } } }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamExternal": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstreamExternal", "description": "Endpoints to forward traffic to.", "type": "object", "properties": { "endpoints": { "description": "Required. List of the endpoints to forward traffic to.", "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpoint" } } } }, "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionGateway": { "type": "object", "properties": { "appGateway": { "type": "string", "description": "Required. AppGateway name in following format: `projects/{project_id}/locations/{location_id}/appgateways/{gateway_id}`" }, "l7psc": { "type": "string", "readOnly": true, "description": "Output only. L7 private service connection for this resource." }, "ingressPort": { "description": "Output only. Ingress port reserved on the gateways for this AppConnection, if not specified or zero, the default port is 19443.", "readOnly": true, "format": "int32", "type": "integer" }, "uri": { "type": "string", "readOnly": true, "description": "Output only. Server-defined URI for this resource." }, "type": { "description": "Required. The type of hosting used by the gateway.", "enum": [ "TYPE_UNSPECIFIED", "GCP_REGIONAL_MIG" ], "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "Gateway hosted in a GCP regional managed instance group." ] } }, "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionGateway", "description": "Gateway represents a user facing component that serves as an entrance to enable connectivity." }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaAppliedConfig": { "properties": { "aggregation": { "description": "Output only. Aggregation type applied.", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ], "readOnly": true, "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "type": "string" }, "fieldFilter": { "type": "string", "readOnly": true, "description": "Output only. Filters applied." }, "group": { "type": "string", "description": "Output only. Group id of the grouping applied.", "readOnly": true }, "customGrouping": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaCustomGrouping", "description": "Output only. Customised grouping applied.", "readOnly": true }, "startTime": { "type": "string", "description": "Output only. Starting time for the duration for which insight was pulled.", "readOnly": true, "format": "google-datetime" }, "endTime": { "type": "string", "description": "Output only. Ending time for the duration for which insight was pulled.", "readOnly": true, "format": "google-datetime" } }, "type": "object", "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaAppliedConfig", "description": "The configuration that was applied to generate the result." }, "GoogleIamV1Binding": { "properties": { "condition": { "description": "The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "$ref": "GoogleTypeExpr" }, "role": { "description": "Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. For an overview of the IAM roles and permissions, see the [IAM documentation](https://cloud.google.com/iam/docs/roles-overview). For a list of the available pre-defined roles, see [here](https://cloud.google.com/iam/docs/understanding-roles).", "type": "string" }, "members": { "description": "Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workforce identity pool. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}`: All workforce identities in a group. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All workforce identities with a specific attribute value. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/*`: All identities in a workforce identity pool. * `principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workload identity pool. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}`: A workload identity pool group. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All identities in a workload identity pool with a certain attribute. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/*`: All identities in a workload identity pool. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: Deleted single identity in a workforce identity pool. For example, `deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value`.", "items": { "type": "string" }, "type": "array" } }, "type": "object", "id": "GoogleIamV1Binding", "description": "Associates `members`, or principals, with a `role`." }, "ContainerHealthDetails": { "id": "ContainerHealthDetails", "description": "ContainerHealthDetails reflects the health details of a container.", "properties": { "extendedStatus": { "type": "object", "additionalProperties": { "type": "string" }, "description": "The extended status. Such as ExitCode, StartedAt, FinishedAt, etc." }, "errorMsg": { "type": "string", "description": "The latest error message." }, "expectedConfigVersion": { "description": "The version of the expected config.", "type": "string" }, "currentConfigVersion": { "description": "The version of the current config.", "type": "string" } }, "type": "object" }, "Empty": { "properties": {}, "type": "object", "id": "Empty", "description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }" }, "GoogleCloudBeyondcorpAppconnectorsV1AppConnectorOperationMetadata": { "properties": { "target": { "readOnly": true, "description": "Output only. Server-defined resource path for the target of the operation.", "type": "string" }, "requestedCancellation": { "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "readOnly": true, "type": "boolean" }, "verb": { "type": "string", "readOnly": true, "description": "Output only. Name of the verb executed by the operation." }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "statusMessage": { "type": "string", "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime", "type": "string" }, "createTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created." } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectorsV1AppConnectorOperationMetadata", "description": "Represents the metadata of the long-running operation." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEgressPolicy": { "properties": { "regions": { "description": "Required. List of the regions where the application sends traffic.", "type": "array", "items": { "type": "string" } } }, "type": "object", "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEgressPolicy", "description": "Routing policy information." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication", "description": "The information about an application resource.", "type": "object", "properties": { "name": { "description": "Identifier. Name of the resource.", "type": "string" }, "createTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was created." }, "updateTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. Timestamp when the resource was last modified.", "type": "string" }, "schema": { "enumDescriptions": [ "Default value. This value is unused.", "Proxy which routes traffic to actual applications, like Netscaler Gateway.", "Service Discovery API endpoint when Service Discovery is enabled in Gateway." ], "type": "string", "description": "Optional. Type of the external application.", "enum": [ "SCHEMA_UNSPECIFIED", "PROXY_GATEWAY", "API_GATEWAY" ] }, "endpointMatchers": { "items": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaEndpointMatcher" }, "type": "array", "description": "Optional. An array of conditions to match the application's network endpoint. Each element in the array is an EndpointMatcher object, which defines a specific combination of a hostname pattern and one or more ports. The application is considered matched if at least one of the EndpointMatcher conditions in this array is met (the conditions are combined using OR logic). Each EndpointMatcher must contain a hostname pattern, such as \"example.com\", and one or more port numbers specified as a string, such as \"443\". Hostname and port number examples: \"*.example.com\", \"443\" \"example.com\" and \"22\" \"example.com\" and \"22,33\"" }, "upstreams": { "type": "array", "items": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplicationUpstream" }, "description": "Optional. Which upstream resources to forward traffic to." }, "displayName": { "description": "Optional. An arbitrary user-provided name for the application resource. Cannot exceed 64 characters.", "type": "string" } } }, "GoogleIamV1AuditLogConfig": { "properties": { "logType": { "description": "The log type that this config enables.", "enum": [ "LOG_TYPE_UNSPECIFIED", "ADMIN_READ", "DATA_WRITE", "DATA_READ" ], "type": "string", "enumDescriptions": [ "Default case. Should never be this.", "Admin reads. Example: CloudIAM getIamPolicy", "Data writes. Example: CloudSQL Users create", "Data reads. Example: CloudSQL Users list" ] }, "exemptedMembers": { "items": { "type": "string" }, "type": "array", "description": "Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members." } }, "type": "object", "id": "GoogleIamV1AuditLogConfig", "description": "Provides the configuration for logging a type of permissions. Example: { \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging." }, "GoogleCloudBeyondcorpAppconnectorsV1ContainerHealthDetails": { "properties": { "extendedStatus": { "description": "The extended status. Such as ExitCode, StartedAt, FinishedAt, etc.", "type": "object", "additionalProperties": { "type": "string" } }, "expectedConfigVersion": { "description": "The version of the expected config.", "type": "string" }, "currentConfigVersion": { "type": "string", "description": "The version of the current config." }, "errorMsg": { "description": "The latest error message.", "type": "string" } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectorsV1ContainerHealthDetails", "description": "ContainerHealthDetails reflects the health details of a container." }, "GoogleCloudBeyondcorpAppconnectorsV1alphaImageConfig": { "properties": { "targetImage": { "description": "The initial image the remote agent will attempt to run for the control plane. Format would be a gcr image path, e.g.: gcr.io/PROJECT-ID/my-image:tag1", "type": "string" }, "stableImage": { "type": "string", "description": "The stable image that the remote agent will fallback to if the target image fails. Format would be a gcr image path, e.g.: gcr.io/PROJECT-ID/my-image:tag1" } }, "type": "object", "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaImageConfig", "description": "ImageConfig defines the control plane images to run." }, "ResolveInstanceConfigResponse": { "type": "object", "properties": { "instanceConfig": { "$ref": "ConnectorInstanceConfig", "description": "ConnectorInstanceConfig." } }, "id": "ResolveInstanceConfigResponse", "description": "Response message for BeyondCorp.ResolveInstanceConfig." }, "GoogleCloudBeyondcorpPartnerservicesV1alphaPartnerServiceOperationMetadata": { "deprecated": true, "type": "object", "id": "GoogleCloudBeyondcorpPartnerservicesV1alphaPartnerServiceOperationMetadata", "description": "Represents the metadata of the long-running operation.", "properties": { "createTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation was created.", "type": "string" }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "format": "google-datetime", "type": "string" }, "statusMessage": { "readOnly": true, "description": "Output only. Human-readable status of the operation, if any.", "type": "string" }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "type": "string", "readOnly": true, "description": "Output only. API version used to start the operation." }, "target": { "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true, "type": "string" }, "requestedCancellation": { "readOnly": true, "description": "Output only. Identifies whether the caller has requested cancellation of the operation. Operations that have successfully been cancelled have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "type": "boolean" } } }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRowFieldVal": { "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRowFieldVal", "description": "Column or key value pair from the request as part of key to use in query or a single pair of the fetch response.", "properties": { "id": { "description": "Output only. Field id.", "readOnly": true, "type": "string" }, "filterAlias": { "readOnly": true, "description": "Output only. Field name to be used in filter while requesting configured insight filtered on this field.", "type": "string" }, "displayName": { "type": "string", "readOnly": true, "description": "Output only. Name of the field." }, "value": { "type": "string", "description": "Output only. Value of the field in string format. Acceptable values are strings or numbers.", "readOnly": true } }, "type": "object" }, "GoogleCloudBeyondcorpAppconnectorsV1alphaReportStatusRequest": { "id": "GoogleCloudBeyondcorpAppconnectorsV1alphaReportStatusRequest", "description": "Request report the connector status.", "type": "object", "properties": { "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000)." }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way." }, "resourceInfo": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaResourceInfo", "description": "Required. Resource info of the connector." } } }, "Gateway": { "properties": { "type": { "description": "Required. The type of hosting used by the gateway.", "enum": [ "TYPE_UNSPECIFIED", "GCP_REGIONAL_MIG" ], "type": "string", "enumDescriptions": [ "Default value. This value is unused.", "Gateway hosted in a GCP regional managed instance group." ] }, "uri": { "type": "string", "description": "Output only. Server-defined URI for this resource.", "readOnly": true }, "userPort": { "type": "integer", "description": "Output only. User port reserved on the gateways for this connection, if not specified or zero, the default port is 19443.", "readOnly": true, "format": "int32" } }, "type": "object", "id": "Gateway", "description": "Gateway represents a user facing component that serves as an entrance to enable connectivity." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListApplicationsResponse": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListApplicationsResponse", "description": "Message for response to listing Applications.", "properties": { "unreachable": { "type": "array", "items": { "type": "string" }, "description": "A list of locations that could not be reached." }, "applications": { "items": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication" }, "type": "array", "description": "A list of BeyondCorp Application in the project." }, "nextPageToken": { "description": "A token to retrieve the next page of results, or empty if there are no more results in the list.", "type": "string" } }, "type": "object" }, "PrincipalInfo": { "id": "PrincipalInfo", "description": "PrincipalInfo represents an Identity oneof.", "type": "object", "properties": { "serviceAccount": { "$ref": "ServiceAccount", "description": "A GCP service account." } } }, "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaConfiguredInsightResponse": { "type": "object", "properties": { "appliedConfig": { "readOnly": true, "description": "Output only. Applied insight config to generate the result data rows.", "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaAppliedConfig" }, "nextPageToken": { "type": "string", "description": "Output only. Next page token to be fetched. Set to empty or NULL if there are no more pages available.", "readOnly": true }, "rows": { "description": "Output only. Result rows returned containing the required value(s) for configured insight.", "readOnly": true, "items": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaRow" }, "type": "array" } }, "id": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaConfiguredInsightResponse", "description": "The response for the configured insight." }, "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedUserInfo": { "id": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaContextualHeadersDelegatedUserInfo", "description": "The configuration information for the delegated user.", "type": "object", "properties": { "outputType": { "description": "Optional. The delegated user's information.", "enum": [ "OUTPUT_TYPE_UNSPECIFIED", "PROTOBUF", "JSON", "NONE" ], "enumDescriptions": [ "The unspecified output type.", "Protobuf output type.", "JSON output type.", "Explicitly disable header output." ], "type": "string" } } }, "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponse": { "type": "object", "properties": { "nextPageToken": { "type": "string", "description": "A token to retrieve the next page of results, or empty if there are no more results in the list." }, "appConnectionDetails": { "items": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponseAppConnectionDetails" }, "type": "array", "description": "A list of BeyondCorp AppConnections with details in the project." }, "unreachable": { "description": "A list of locations that could not be reached.", "items": { "type": "string" }, "type": "array" } }, "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponse", "description": "Response message for BeyondCorp.ResolveAppConnections." }, "ListConnectionsResponse": { "type": "object", "properties": { "connections": { "items": { "$ref": "Connection" }, "type": "array", "description": "A list of BeyondCorp Connections in the project." }, "nextPageToken": { "type": "string", "description": "A token to retrieve the next page of results, or empty if there are no more results in the list." }, "unreachable": { "type": "array", "items": { "type": "string" }, "description": "A list of locations that could not be reached." } }, "id": "ListConnectionsResponse", "description": "Response message for BeyondCorp.ListConnections." }, "GoogleRpcStatus": { "properties": { "code": { "description": "The status code, which should be an enum value of google.rpc.Code.", "format": "int32", "type": "integer" }, "message": { "type": "string", "description": "A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client." }, "details": { "items": { "type": "object", "additionalProperties": { "type": "any", "description": "Properties of the object. Contains field @type with type URL." } }, "type": "array", "description": "A list of messages that carry the error details. There is a common set of message types for APIs to use." } }, "type": "object", "id": "GoogleRpcStatus", "description": "The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors)." }, "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionOperationMetadata": { "id": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnectionOperationMetadata", "description": "Represents the metadata of the long-running operation.", "type": "object", "properties": { "createTime": { "description": "Output only. The time the operation was created.", "readOnly": true, "format": "google-datetime", "type": "string" }, "endTime": { "type": "string", "readOnly": true, "format": "google-datetime", "description": "Output only. The time the operation finished running." }, "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "target": { "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true, "type": "string" }, "requestedCancellation": { "type": "boolean", "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have google.longrunning.Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true } } } }, "protocol": "rest", "ownerDomain": "google.com", "baseUrl": "https://beyondcorp.googleapis.com/", "version_module": true, "description": "Chrome Enterprise Premium is a secure enterprise browsing solution that provides secure access to applications and resources, and offers integrated threat and data protection. It adds an extra layer of security to safeguard your Chrome browser environment, including Data Loss Prevention (DLP), real-time URL and file scanning, and Context-Aware Access for SaaS and web apps.", "version": "v1alpha", "documentationLink": "https://cloud.google.com/", "id": "beyondcorp:v1alpha", "revision": "20260429", "resources": { "projects": { "resources": { "locations": { "methods": { "list": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations", "parameters": { "name": { "description": "The resource that owns the locations collection, if applicable.", "pattern": "^projects/[^/]+$", "type": "string", "location": "path", "required": true }, "pageSize": { "format": "int32", "description": "The maximum number of results to return. If not set, the service selects a default.", "location": "query", "type": "integer" }, "pageToken": { "description": "A page token received from the `next_page_token` field in the response. Send that page token to receive the subsequent page.", "location": "query", "type": "string" }, "extraLocationTypes": { "description": "Optional. Do not use this field unless explicitly documented otherwise. This is primarily for internal usage.", "location": "query", "type": "string", "repeated": true }, "filter": { "description": "A filter to narrow down results to a preferred subset. The filtering language accepts strings like `\"displayName=tokyo\"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160).", "location": "query", "type": "string" } }, "description": "Lists information about the supported locations for this service. This method lists locations based on the resource scope provided in the ListLocationsRequest.name field: * **Global locations**: If `name` is empty, the method lists the public locations available to all projects. * **Project-specific locations**: If `name` follows the format `projects/{project}`, the method lists locations visible to that specific project. This includes public, private, or other project-specific locations enabled for the project. For gRPC and client library implementations, the resource name is passed as the `name` field. For direct service calls, the resource name is incorporated into the request path based on the specific service implementation and version.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudLocationListLocationsResponse" }, "id": "beyondcorp.projects.locations.list", "path": "v1alpha/{+name}/locations" }, "get": { "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.get", "httpMethod": "GET", "response": { "$ref": "GoogleCloudLocationLocation" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}", "parameters": { "name": { "description": "Resource name for the location.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+$" } }, "description": "Gets information about a location.", "parameterOrder": [ "name" ] } }, "resources": { "operations": { "methods": { "get": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}", "parameters": { "name": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$", "location": "path", "required": true, "description": "The name of the operation resource." } }, "description": "Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "beyondcorp.projects.locations.operations.get", "path": "v1alpha/{+name}", "httpMethod": "GET", "response": { "$ref": "GoogleLongrunningOperation" } }, "delete": { "id": "beyondcorp.projects.locations.operations.delete", "path": "v1alpha/{+name}", "httpMethod": "DELETE", "response": { "$ref": "Empty" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}", "parameters": { "name": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$", "type": "string", "description": "The name of the operation resource to be deleted." } }, "description": "Deletes a long-running operation. This method indicates that the client is no longer interested in the operation result. It does not cancel the operation. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ] }, "cancel": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}:cancel", "parameters": { "name": { "description": "The name of the operation resource to be cancelled.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$" } }, "description": "Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "Empty" }, "id": "beyondcorp.projects.locations.operations.cancel", "request": { "$ref": "GoogleLongrunningCancelOperationRequest" }, "path": "v1alpha/{+name}:cancel" }, "list": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/operations", "parameters": { "pageToken": { "description": "The standard list page token.", "location": "query", "type": "string" }, "filter": { "description": "The standard list filter.", "location": "query", "type": "string" }, "pageSize": { "format": "int32", "description": "The standard list page size.", "location": "query", "type": "integer" }, "name": { "description": "The name of the operation's parent resource.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+$" }, "returnPartialSuccess": { "type": "boolean", "description": "When set to `true`, operations that are reachable are returned as normal, and those that are unreachable are returned in the ListOperationsResponse.unreachable field. This can only be `true` when reading across collections. For example, when `parent` is set to `\"projects/example/locations/-\"`. This field is not supported by default and will result in an `UNIMPLEMENTED` error if set unless explicitly documented otherwise in service or product specific documentation.", "location": "query" } }, "description": "Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`.", "parameterOrder": [ "name" ], "path": "v1alpha/{+name}/operations", "id": "beyondcorp.projects.locations.operations.list", "httpMethod": "GET", "response": { "$ref": "GoogleLongrunningListOperationsResponse" } } } }, "connectors": { "methods": { "patch": { "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.projects.locations.connectors.patch", "request": { "$ref": "Connector" }, "path": "v1alpha/{+name}", "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}", "parameters": { "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "updateMask": { "type": "string", "description": "Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include these fields from [BeyondCorp.Connector]: * `labels` * `display_name`", "location": "query", "format": "google-fieldmask" }, "name": { "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. Unique resource name of the connector. The name is ignored when creating a connector." }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" } }, "description": "Updates the parameters of a single Connector.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "delete": { "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.connectors.delete", "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}", "parameters": { "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" }, "name": { "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "type": "string" }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" } }, "description": "Deletes a single Connector.", "parameterOrder": [ "name" ] }, "resolveInstanceConfig": { "id": "beyondcorp.projects.locations.connectors.resolveInstanceConfig", "path": "v1alpha/{+connector}:resolveInstanceConfig", "httpMethod": "GET", "response": { "$ref": "ResolveInstanceConfigResponse" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}:resolveInstanceConfig", "parameters": { "connector": { "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector}`" } }, "description": "Gets instance configuration for a given connector. An internal method called by a connector to get its container config.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "connector" ] }, "get": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}", "parameters": { "name": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "location": "path", "required": true, "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector_id}`" } }, "description": "Gets details of a single Connector.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "Connector" }, "id": "beyondcorp.projects.locations.connectors.get", "path": "v1alpha/{+name}" }, "create": { "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors", "parameters": { "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "description": "Required. The resource project name of the connector location using the form: `projects/{project_id}/locations/{location_id}`" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "connectorId": { "description": "Optional. User-settable connector resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or a letter.", "location": "query", "type": "string" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" } }, "description": "Creates a new Connector in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.projects.locations.connectors.create", "request": { "$ref": "Connector" }, "path": "v1alpha/{+parent}/connectors" }, "list": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors", "parameters": { "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" }, "orderBy": { "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query", "type": "string" }, "pageToken": { "type": "string", "description": "Optional. The next_page_token value returned from a previous ListConnectorsRequest, if any.", "location": "query" }, "parent": { "description": "Required. The resource name of the connector location using the form: `projects/{project_id}/locations/{location_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string" }, "filter": { "type": "string", "description": "Optional. A filter specifying constraints of a list operation.", "location": "query" } }, "description": "Lists Connectors in a given project and location.", "parameterOrder": [ "parent" ], "path": "v1alpha/{+parent}/connectors", "id": "beyondcorp.projects.locations.connectors.list", "httpMethod": "GET", "response": { "$ref": "ListConnectorsResponse" } }, "reportStatus": { "parameterOrder": [ "connector" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}:reportStatus", "parameters": { "connector": { "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector}`", "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "location": "path", "required": true } }, "description": "Report status for a given connector.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.projects.locations.connectors.reportStatus", "request": { "$ref": "ReportStatusRequest" }, "path": "v1alpha/{+connector}:reportStatus" }, "setIamPolicy": { "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}:setIamPolicy", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$", "type": "string" } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.connectors.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "path": "v1alpha/{+resource}:setIamPolicy" }, "getIamPolicy": { "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "path": "v1alpha/{+resource}:getIamPolicy", "id": "beyondcorp.projects.locations.connectors.getIamPolicy", "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connectors/{connectorsId}:getIamPolicy", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/connectors/[^/]+$" }, "options.requestedPolicyVersion": { "type": "integer", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "format": "int32" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set." } } }, "appConnections": { "methods": { "patch": { "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.appConnections.patch", "request": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection" }, "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}", "parameters": { "name": { "description": "Required. Unique resource name of the AppConnection. The name is ignored when creating a AppConnection.", "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "type": "string", "location": "path", "required": true }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "updateMask": { "description": "Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include these fields from [BeyondCorp.AppConnection]: * `labels` * `display_name` * `application_endpoint` * `connectors`", "location": "query", "format": "google-fieldmask", "type": "string" }, "allowMissing": { "description": "Optional. If set as true, will create the resource if it is not found.", "location": "query", "type": "boolean" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if the original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Updates the parameters of a single AppConnection." }, "delete": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}", "parameters": { "name": { "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/appConnections/{app_connection_id}`", "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "type": "string", "location": "path", "required": true }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if the original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Deletes a single AppConnection.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "beyondcorp.projects.locations.appConnections.delete", "path": "v1alpha/{+name}", "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" } }, "setIamPolicy": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.appConnections.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "path": "v1alpha/{+resource}:setIamPolicy", "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}:setIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "getIamPolicy": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}:getIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "format": "int32", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "type": "integer" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "resource" ], "id": "beyondcorp.projects.locations.appConnections.getIamPolicy", "path": "v1alpha/{+resource}:getIamPolicy", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" } }, "testIamPermissions": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}:testIamPermissions", "parameters": { "resource": { "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "parameterOrder": [ "resource" ], "path": "v1alpha/{+resource}:testIamPermissions", "id": "beyondcorp.projects.locations.appConnections.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" } }, "list": { "id": "beyondcorp.projects.locations.appConnections.list", "path": "v1alpha/{+parent}/appConnections", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaListAppConnectionsResponse" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections", "parameters": { "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "description": "Required. The resource name of the AppConnection location using the form: `projects/{project_id}/locations/{location_id}`" }, "filter": { "description": "Optional. A filter specifying constraints of a list operation.", "location": "query", "type": "string" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ListAppConnectionsRequest, if any.", "location": "query", "type": "string" }, "orderBy": { "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query", "type": "string" }, "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" } }, "description": "Lists AppConnections in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ] }, "create": { "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections", "parameters": { "appConnectionId": { "type": "string", "description": "Optional. User-settable AppConnection resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or a letter.", "location": "query" }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" }, "parent": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+$", "location": "path", "required": true, "description": "Required. The resource project name of the AppConnection location using the form: `projects/{project_id}/locations/{location_id}`" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if the original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" } }, "description": "Creates a new AppConnection in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.projects.locations.appConnections.create", "request": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection" }, "path": "v1alpha/{+parent}/appConnections" }, "resolve": { "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections:resolve", "parameters": { "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "description": "Required. The resource name of the AppConnection location using the form: `projects/{project_id}/locations/{location_id}`" }, "appConnectorId": { "type": "string", "description": "Required. BeyondCorp Connector name of the connector associated with those AppConnections using the form: `projects/{project_id}/locations/{location_id}/appConnectors/{app_connector_id}`", "location": "query" }, "pageSize": { "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query", "type": "integer" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ResolveAppConnectionsResponse, if any.", "location": "query", "type": "string" } }, "description": "Resolves AppConnections details for a given AppConnector. An internal method called by a connector to find AppConnections to connect to.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaResolveAppConnectionsResponse" }, "id": "beyondcorp.projects.locations.appConnections.resolve", "path": "v1alpha/{+parent}/appConnections:resolve" }, "get": { "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnections/{appConnectionsId}", "parameters": { "name": { "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/appConnections/[^/]+$", "description": "Required. BeyondCorp AppConnection name using the form: `projects/{project_id}/locations/{location_id}/appConnections/{app_connection_id}`" } }, "description": "Gets details of a single AppConnection.", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectionsV1alphaAppConnection" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.appConnections.get" } } }, "appGateways": { "methods": { "get": { "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.appGateways.get", "httpMethod": "GET", "response": { "$ref": "AppGateway" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways/{appGatewaysId}", "parameters": { "name": { "description": "Required. BeyondCorp AppGateway name using the form: `projects/{project_id}/locations/{location_id}/appGateways/{app_gateway_id}`", "pattern": "^projects/[^/]+/locations/[^/]+/appGateways/[^/]+$", "type": "string", "location": "path", "required": true } }, "description": "Gets details of a single AppGateway.", "parameterOrder": [ "name" ] }, "delete": { "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.appGateways.delete", "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways/{appGatewaysId}", "parameters": { "name": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appGateways/[^/]+$", "type": "string", "description": "Required. BeyondCorp AppGateway name using the form: `projects/{project_id}/locations/{location_id}/appGateways/{app_gateway_id}`" }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" } }, "description": "Deletes a single AppGateway." }, "list": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways", "parameters": { "orderBy": { "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query", "type": "string" }, "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" }, "parent": { "description": "Required. The resource name of the AppGateway location using the form: `projects/{project_id}/locations/{location_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string" }, "filter": { "type": "string", "description": "Optional. A filter specifying constraints of a list operation.", "location": "query" }, "pageToken": { "type": "string", "description": "Optional. The next_page_token value returned from a previous ListAppGatewaysRequest, if any.", "location": "query" } }, "description": "Lists AppGateways in a given project and location.", "parameterOrder": [ "parent" ], "path": "v1alpha/{+parent}/appGateways", "id": "beyondcorp.projects.locations.appGateways.list", "httpMethod": "GET", "response": { "$ref": "ListAppGatewaysResponse" } }, "create": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways", "parameters": { "appGatewayId": { "type": "string", "description": "Optional. User-settable AppGateway resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or a letter.", "location": "query" }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" }, "parent": { "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. The resource project name of the AppGateway location using the form: `projects/{project_id}/locations/{location_id}`" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" } }, "description": "Creates a new AppGateway in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ], "id": "beyondcorp.projects.locations.appGateways.create", "request": { "$ref": "AppGateway" }, "path": "v1alpha/{+parent}/appGateways", "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" } }, "setIamPolicy": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways/{appGatewaysId}:setIamPolicy", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/appGateways/[^/]+$" } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "parameterOrder": [ "resource" ], "path": "v1alpha/{+resource}:setIamPolicy", "id": "beyondcorp.projects.locations.appGateways.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" } }, "getIamPolicy": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways/{appGatewaysId}:getIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appGateways/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "type": "integer", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "format": "int32" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "resource" ], "id": "beyondcorp.projects.locations.appGateways.getIamPolicy", "path": "v1alpha/{+resource}:getIamPolicy", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" } }, "testIamPermissions": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" }, "path": "v1alpha/{+resource}:testIamPermissions", "id": "beyondcorp.projects.locations.appGateways.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appGateways/{appGatewaysId}:testIamPermissions", "parameters": { "resource": { "pattern": "^projects/[^/]+/locations/[^/]+/appGateways/[^/]+$", "type": "string", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning." } } }, "securityGateways": { "methods": { "setIamPolicy": { "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}:setIamPolicy", "parameters": { "resource": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.securityGateways.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "path": "v1alpha/{+resource}:setIamPolicy" }, "getIamPolicy": { "path": "v1alpha/{+resource}:getIamPolicy", "id": "beyondcorp.projects.locations.securityGateways.getIamPolicy", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}:getIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "type": "integer", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "format": "int32" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "parameterOrder": [ "resource" ] }, "testIamPermissions": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}:testIamPermissions", "parameters": { "resource": { "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "parameterOrder": [ "resource" ], "path": "v1alpha/{+resource}:testIamPermissions", "id": "beyondcorp.projects.locations.securityGateways.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" } }, "list": { "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways", "parameters": { "parent": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+$", "location": "path", "required": true, "description": "Required. The parent location to which the resources belong. `projects/{project_id}/locations/{location_id}/`" }, "filter": { "description": "Optional. A filter specifying constraints of a list operation. All fields in the SecurityGateway message are supported. For example, the following query will return the SecurityGateway with displayName \"test-security-gateway\" For more information, please refer to https://google.aip.dev/160.", "location": "query", "type": "string" }, "pageToken": { "type": "string", "description": "Optional. The next_page_token value returned from a previous ListSecurityGatewayRequest, if any.", "location": "query" }, "orderBy": { "type": "string", "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query" }, "pageSize": { "type": "integer", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query", "format": "int32" } }, "description": "Lists SecurityGateways in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListSecurityGatewaysResponse" }, "id": "beyondcorp.projects.locations.securityGateways.list", "path": "v1alpha/{+parent}/securityGateways" }, "create": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways", "parameters": { "securityGatewayId": { "type": "string", "description": "Optional. User-settable SecurityGateway resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or letter.", "location": "query" }, "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "description": "Required. The resource project name of the SecurityGateway location using the form: `projects/{project_id}/locations/{location_id}`" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request.", "location": "query", "type": "string" } }, "description": "Creates a new Security Gateway in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ], "id": "beyondcorp.projects.locations.securityGateways.create", "request": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway" }, "path": "v1alpha/{+parent}/securityGateways", "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" } }, "get": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}", "parameters": { "name": { "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. The resource name of the PartnerTenant using the form: `projects/{project_id}/locations/{location_id}/securityGateway/{security_gateway_id}`" } }, "description": "Gets details of a single SecurityGateway.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway" }, "id": "beyondcorp.projects.locations.securityGateways.get", "path": "v1alpha/{+name}" }, "patch": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}", "parameters": { "name": { "description": "Identifier. Name of the resource.", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string", "location": "path", "required": true }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request timed out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "updateMask": { "format": "google-fieldmask", "description": "Optional. Mutable fields include: display_name, hubs.", "location": "query", "type": "string" } }, "description": "Updates the parameters of a single SecurityGateway.", "parameterOrder": [ "name" ], "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.securityGateways.patch", "request": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaSecurityGateway" }, "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" } }, "delete": { "id": "beyondcorp.projects.locations.securityGateways.delete", "path": "v1alpha/{+name}", "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}", "parameters": { "name": { "description": "Required. BeyondCorp SecurityGateway name using the form: `projects/{project_id}/locations/{location_id}/securityGateways/{security_gateway_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" } }, "description": "Deletes a single SecurityGateway.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ] } }, "resources": { "applications": { "methods": { "get": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}", "parameters": { "name": { "description": "Required. The resource name of the Application using the form: `projects/{project_id}/locations/global/securityGateway/{security_gateway_id}/applications/{application_id}`", "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$", "location": "path", "required": true } }, "description": "Gets details of a single Application.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "beyondcorp.projects.locations.securityGateways.applications.get", "path": "v1alpha/{+name}", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication" } }, "patch": { "id": "beyondcorp.projects.locations.securityGateways.applications.patch", "request": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication" }, "path": "v1alpha/{+name}", "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}", "parameters": { "updateMask": { "format": "google-fieldmask", "description": "Optional. Mutable fields include: display_name.", "location": "query", "type": "string" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request timed out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "name": { "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$", "description": "Identifier. Name of the resource." } }, "description": "Updates the parameters of a single Application.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ] }, "delete": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}", "parameters": { "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" }, "name": { "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$", "description": "Required. Name of the resource." }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" } }, "description": "Deletes a single application.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.projects.locations.securityGateways.applications.delete", "path": "v1alpha/{+name}" }, "setIamPolicy": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "path": "v1alpha/{+resource}:setIamPolicy", "id": "beyondcorp.projects.locations.securityGateways.applications.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}:setIamPolicy", "parameters": { "resource": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors." }, "getIamPolicy": { "id": "beyondcorp.projects.locations.securityGateways.applications.getIamPolicy", "path": "v1alpha/{+resource}:getIamPolicy", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}:getIamPolicy", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$" }, "options.requestedPolicyVersion": { "type": "integer", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "format": "int32" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "resource" ] }, "testIamPermissions": { "path": "v1alpha/{+resource}:testIamPermissions", "id": "beyondcorp.projects.locations.securityGateways.applications.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications/{applicationsId}:testIamPermissions", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+/applications/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "parameterOrder": [ "resource" ] }, "list": { "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaListApplicationsResponse" }, "id": "beyondcorp.projects.locations.securityGateways.applications.list", "path": "v1alpha/{+parent}/applications", "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications", "parameters": { "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" }, "orderBy": { "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query", "type": "string" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ListApplicationsRequest, if any.", "location": "query", "type": "string" }, "parent": { "description": "Required. The parent location to which the resources belong. `projects/{project_id}/locations/global/securityGateways/{security_gateway_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string" }, "filter": { "description": "Optional. A filter specifying constraints of a list operation. All fields in the Application message are supported. For example, the following query will return the Application with displayName \"test-application\" For more information, please refer to https://google.aip.dev/160.", "location": "query", "type": "string" } }, "description": "Lists Applications in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "create": { "id": "beyondcorp.projects.locations.securityGateways.applications.create", "request": { "$ref": "GoogleCloudBeyondcorpSecuritygatewaysV1alphaApplication" }, "path": "v1alpha/{+parent}/applications", "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/securityGateways/{securityGatewaysId}/applications", "parameters": { "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/securityGateways/[^/]+$", "type": "string", "description": "Required. The resource name of the parent SecurityGateway using the form: `projects/{project_id}/locations/global/securityGateways/{security_gateway_id}`" }, "applicationId": { "type": "string", "description": "Optional. User-settable Application resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or letter.", "location": "query" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request.", "location": "query", "type": "string" } }, "description": "Creates a new Application in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ] } } } } }, "connections": { "methods": { "list": { "parameterOrder": [ "parent" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections", "parameters": { "pageToken": { "type": "string", "description": "Optional. The next_page_token value returned from a previous ListConnectionsRequest, if any.", "location": "query" }, "parent": { "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. The resource name of the connection location using the form: `projects/{project_id}/locations/{location_id}`" }, "filter": { "type": "string", "description": "Optional. A filter specifying constraints of a list operation.", "location": "query" }, "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" }, "orderBy": { "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query", "type": "string" } }, "description": "Lists Connections in a given project and location.", "httpMethod": "GET", "response": { "$ref": "ListConnectionsResponse" }, "path": "v1alpha/{+parent}/connections", "id": "beyondcorp.projects.locations.connections.list" }, "create": { "id": "beyondcorp.projects.locations.connections.create", "request": { "$ref": "Connection" }, "path": "v1alpha/{+parent}/connections", "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections", "parameters": { "connectionId": { "type": "string", "description": "Optional. User-settable connection resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or a letter.", "location": "query" }, "parent": { "description": "Required. The resource project name of the connection location using the form: `projects/{project_id}/locations/{location_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" } }, "description": "Creates a new Connection in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ] }, "resolve": { "httpMethod": "GET", "response": { "$ref": "ResolveConnectionsResponse" }, "id": "beyondcorp.projects.locations.connections.resolve", "path": "v1alpha/{+parent}/connections:resolve", "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections:resolve", "parameters": { "pageSize": { "type": "integer", "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ResolveConnectionsResponse, if any.", "location": "query", "type": "string" }, "connectorId": { "type": "string", "description": "Required. BeyondCorp Connector name of the connector associated with those connections using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector_id}`", "location": "query" }, "parent": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+$", "location": "path", "required": true, "description": "Required. The resource name of the connection location using the form: `projects/{project_id}/locations/{location_id}`" } }, "description": "Resolves connections details for a given connector. An internal method called by a connector to find connections to connect to.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "setIamPolicy": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.connections.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "path": "v1alpha/{+resource}:setIamPolicy", "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections/{connectionsId}:setIamPolicy", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/connections/[^/]+$" } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "getIamPolicy": { "path": "v1alpha/{+resource}:getIamPolicy", "id": "beyondcorp.projects.locations.connections.getIamPolicy", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections/{connectionsId}:getIamPolicy", "parameters": { "resource": { "pattern": "^projects/[^/]+/locations/[^/]+/connections/[^/]+$", "type": "string", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "format": "int32", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "type": "integer" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "parameterOrder": [ "resource" ] }, "get": { "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections/{connectionsId}", "parameters": { "name": { "pattern": "^projects/[^/]+/locations/[^/]+/connections/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. BeyondCorp Connection name using the form: `projects/{project_id}/locations/{location_id}/connections/{connection_id}`" } }, "description": "Gets details of a single Connection.", "httpMethod": "GET", "response": { "$ref": "Connection" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.connections.get" }, "patch": { "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.connections.patch", "request": { "$ref": "Connection" }, "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections/{connectionsId}", "parameters": { "updateMask": { "description": "Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include these fields from [BeyondCorp.Connection]: * `labels` * `display_name` * `application_endpoint` * `connectors`", "location": "query", "format": "google-fieldmask", "type": "string" }, "name": { "description": "Required. Unique resource name of the connection. The name is ignored when creating a connection.", "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/connections/[^/]+$" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "allowMissing": { "description": "Optional. If set as true, will create the resource if it is not found.", "location": "query", "type": "boolean" } }, "description": "Updates the parameters of a single Connection.", "parameterOrder": [ "name" ] }, "delete": { "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.connections.delete", "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/connections/{connectionsId}", "parameters": { "name": { "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connections/{connection_id}`", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/connections/[^/]+$", "type": "string" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "requestId": { "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query", "type": "string" } }, "description": "Deletes a single Connection." } } }, "applications": { "methods": { "setIamPolicy": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "path": "v1alpha/{+resource}:setIamPolicy", "id": "beyondcorp.projects.locations.applications.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applications/{applicationsId}:setIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/applications/[^/]+$", "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors." }, "getIamPolicy": { "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applications/{applicationsId}:getIamPolicy", "parameters": { "resource": { "pattern": "^projects/[^/]+/locations/[^/]+/applications/[^/]+$", "type": "string", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "format": "int32", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "type": "integer" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.applications.getIamPolicy", "path": "v1alpha/{+resource}:getIamPolicy" }, "testIamPermissions": { "path": "v1alpha/{+resource}:testIamPermissions", "id": "beyondcorp.projects.locations.applications.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applications/{applicationsId}:testIamPermissions", "parameters": { "resource": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/applications/[^/]+$", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "parameterOrder": [ "resource" ] } } }, "appConnectors": { "methods": { "patch": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}", "parameters": { "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "updateMask": { "description": "Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include these fields from [BeyondCorp.AppConnector]: * `labels` * `display_name`", "location": "query", "format": "google-fieldmask", "type": "string" }, "name": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "description": "Required. Unique resource name of the AppConnector. The name is ignored when creating a AppConnector." }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" } }, "description": "Updates the parameters of a single AppConnector.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "beyondcorp.projects.locations.appConnectors.patch", "request": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector" }, "path": "v1alpha/{+name}", "httpMethod": "PATCH", "response": { "$ref": "GoogleLongrunningOperation" } }, "delete": { "httpMethod": "DELETE", "response": { "$ref": "GoogleLongrunningOperation" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.appConnectors.delete", "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}", "parameters": { "name": { "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. BeyondCorp AppConnector name using the form: `projects/{project_id}/locations/{location_id}/appConnectors/{app_connector_id}`" }, "validateOnly": { "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query", "type": "boolean" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Deletes a single AppConnector." }, "resolveInstanceConfig": { "parameterOrder": [ "appConnector" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}:resolveInstanceConfig", "parameters": { "appConnector": { "description": "Required. BeyondCorp AppConnector name using the form: `projects/{project_id}/locations/{location_id}/appConnectors/{app_connector}`", "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "location": "path", "required": true } }, "description": "Gets instance configuration for a given AppConnector. An internal method called by a AppConnector to get its container config.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaResolveInstanceConfigResponse" }, "id": "beyondcorp.projects.locations.appConnectors.resolveInstanceConfig", "path": "v1alpha/{+appConnector}:resolveInstanceConfig" }, "get": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}", "parameters": { "name": { "description": "Required. BeyondCorp AppConnector name using the form: `projects/{project_id}/locations/{location_id}/appConnectors/{app_connector_id}`", "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "location": "path", "required": true } }, "description": "Gets details of a single AppConnector.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector" }, "id": "beyondcorp.projects.locations.appConnectors.get", "path": "v1alpha/{+name}" }, "create": { "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "path": "v1alpha/{+parent}/appConnectors", "id": "beyondcorp.projects.locations.appConnectors.create", "request": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaAppConnector" }, "parameterOrder": [ "parent" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors", "parameters": { "appConnectorId": { "type": "string", "description": "Optional. User-settable AppConnector resource ID. * Must start with a letter. * Must contain between 4-63 characters from `/a-z-/`. * Must end with a number or a letter.", "location": "query" }, "validateOnly": { "type": "boolean", "description": "Optional. If set, validates request by executing a dry-run which would not alter the resource in any way.", "location": "query" }, "parent": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "description": "Required. The resource project name of the AppConnector location using the form: `projects/{project_id}/locations/{location_id}`" }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Creates a new AppConnector in a given project and location." }, "list": { "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaListAppConnectorsResponse" }, "id": "beyondcorp.projects.locations.appConnectors.list", "path": "v1alpha/{+parent}/appConnectors", "parameterOrder": [ "parent" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors", "parameters": { "pageSize": { "format": "int32", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query", "type": "integer" }, "orderBy": { "type": "string", "description": "Optional. Specifies the ordering of results. See [Sorting order](https://cloud.google.com/apis/design/design_patterns#sorting_order) for more information.", "location": "query" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ListAppConnectorsRequest, if any.", "location": "query", "type": "string" }, "parent": { "description": "Required. The resource name of the AppConnector location using the form: `projects/{project_id}/locations/{location_id}`", "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "location": "path", "required": true }, "filter": { "type": "string", "description": "Optional. A filter specifying constraints of a list operation.", "location": "query" } }, "description": "Lists AppConnectors in a given project and location.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "reportStatus": { "path": "v1alpha/{+appConnector}:reportStatus", "id": "beyondcorp.projects.locations.appConnectors.reportStatus", "request": { "$ref": "GoogleCloudBeyondcorpAppconnectorsV1alphaReportStatusRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleLongrunningOperation" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}:reportStatus", "parameters": { "appConnector": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "description": "Required. BeyondCorp Connector name using the form: `projects/{project_id}/locations/{location_id}/connectors/{connector}`" } }, "description": "Report status for a given connector.", "parameterOrder": [ "appConnector" ] }, "setIamPolicy": { "path": "v1alpha/{+resource}:setIamPolicy", "id": "beyondcorp.projects.locations.appConnectors.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}:setIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.", "parameterOrder": [ "resource" ] }, "getIamPolicy": { "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}:getIamPolicy", "parameters": { "resource": { "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "format": "int32", "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "type": "integer" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "id": "beyondcorp.projects.locations.appConnectors.getIamPolicy", "path": "v1alpha/{+resource}:getIamPolicy" }, "testIamPermissions": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/appConnectors/{appConnectorsId}:testIamPermissions", "parameters": { "resource": { "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/appConnectors/[^/]+$", "type": "string" } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "resource" ], "id": "beyondcorp.projects.locations.appConnectors.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "path": "v1alpha/{+resource}:testIamPermissions", "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" } } } }, "insights": { "methods": { "list": { "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/insights", "parameters": { "filter": { "type": "string", "description": "Optional. Filter expression to restrict the insights returned. Supported filter fields: * `type` * `category` * `subCategory` Examples: * \"category = application AND type = count\" * \"category = application AND subCategory = iap\" * \"type = status\" Allowed values: * type: [count, latency, status, list] * category: [application, device, request, security] * subCategory: [iap, caa, webprotect] NOTE: Only equality based comparison is allowed. Only `AND` conjunction is allowed. NOTE: The 'AND' in the filter field needs to be in capital letters only. NOTE: Just filtering on `subCategory` is not allowed. It should be passed in with the parent `category` too. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query" }, "pageToken": { "type": "string", "description": "Optional. A token identifying a page of results the server should return.", "location": "query" }, "view": { "description": "Required. List only metadata or full data.", "enum": [ "INSIGHT_VIEW_UNSPECIFIED", "BASIC", "FULL" ], "enumDescriptions": [ "The default / unset value. The API will default to the BASIC view.", "Include basic metadata about the insight, but not the insight data. This is the default value (for both ListInsights and GetInsight).", "Include everything." ], "type": "string", "location": "query" }, "startTime": { "format": "google-datetime", "description": "Optional. Starting time for the duration for which insights are to be pulled. The default is 7 days before the current time.", "location": "query", "type": "string" }, "endTime": { "format": "google-datetime", "description": "Optional. Ending time for the duration for which insights are to be pulled. The default is the current time.", "location": "query", "type": "string" }, "parent": { "pattern": "^projects/[^/]+/locations/[^/]+$", "type": "string", "location": "path", "required": true, "description": "Required. The resource name of InsightMetadata using the form: `organizations/{organization_id}/locations/{location}` `projects/{project_id}/locations/{location_id}`" }, "aggregation": { "type": "string", "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "location": "query", "description": "Optional. Aggregation type. The default is 'DAILY'.", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ] }, "orderBy": { "description": "Optional. Hint for how to order the results. This is currently ignored.", "location": "query", "type": "string" }, "pageSize": { "type": "integer", "description": "Optional. Requested page size. Server may return fewer items than requested. If unspecified, server will pick an appropriate default. NOTE: Default page size is 50.", "location": "query", "format": "int32" } }, "description": "Lists for all the available insights that could be fetched from the system. Allows to filter using category. Setting the `view` to `BASIC` will let you iterate over the list of insight metadatas.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "parent" ], "id": "beyondcorp.projects.locations.insights.list", "path": "v1alpha/{+parent}/insights", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaListInsightsResponse" } }, "get": { "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsight" }, "path": "v1alpha/{+name}", "id": "beyondcorp.projects.locations.insights.get", "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/insights/{insightsId}", "parameters": { "name": { "description": "Required. The resource name of the insight using the form: `organizations/{organization_id}/locations/{location_id}/insights/{insight_id}` `projects/{project_id}/locations/{location_id}/insights/{insight_id}`", "pattern": "^projects/[^/]+/locations/[^/]+/insights/[^/]+$", "type": "string", "location": "path", "required": true }, "view": { "location": "query", "type": "string", "enumDescriptions": [ "The default / unset value. The API will default to the BASIC view.", "Include basic metadata about the insight, but not the insight data. This is the default value (for both ListInsights and GetInsight).", "Include everything." ], "description": "Required. Metadata only or full data view.", "enum": [ "INSIGHT_VIEW_UNSPECIFIED", "BASIC", "FULL" ] } }, "description": "Gets the value for a selected particular insight with default configuration. The default aggregation level is 'DAILY' and no grouping will be applied or default grouping if applicable. The data will be returned for recent 7 days starting the day before. The insight data size will be limited to 50 rows. Use the organization level path for fetching at org level and project level path for fetching the insight value specific to a particular project. Setting the `view` to `BASIC` will only return the metadata for the insight." }, "configuredInsight": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/insights/{insightsId}:configuredInsight", "parameters": { "pageToken": { "type": "string", "description": "Optional. Used to fetch the page represented by the token. Fetches the first page when not set.", "location": "query" }, "insight": { "description": "Required. The resource name of the insight using the form: `organizations/{organization_id}/locations/{location_id}/insights/{insight_id}` `projects/{project_id}/locations/{location_id}/insights/{insight_id}`.", "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/insights/[^/]+$", "type": "string" }, "customGrouping.groupFields": { "description": "Required. Fields to be used for grouping. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for declaring the fields to be grouped-by here.", "location": "query", "repeated": true, "type": "string" }, "startTime": { "type": "string", "description": "Required. Starting time for the duration for which insight is to be pulled.", "location": "query", "format": "google-datetime" }, "endTime": { "description": "Required. Ending time for the duration for which insight is to be pulled.", "location": "query", "format": "google-datetime", "type": "string" }, "aggregation": { "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "type": "string", "location": "query", "description": "Required. Aggregation type. Available aggregation could be fetched by calling insight list and get APIs in `BASIC` view.", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ] }, "fieldFilter": { "description": "Optional. Other filterable/configurable parameters as applicable to the selected insight. Available fields could be fetched by calling insight list and get APIs in `BASIC` view. `=` is the only comparison operator supported. `AND` is the only logical operator supported. Usage: field_filter=\"fieldName1=fieldVal1 AND fieldName2=fieldVal2\". NOTE: Only `AND` conditions are allowed. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for the filtering the corresponding fields in this filter field. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query", "type": "string" }, "group": { "description": "Optional. Group id of the available groupings for the insight. Available groupings could be fetched by calling insight list and get APIs in `BASIC` view.", "location": "query", "type": "string" }, "pageSize": { "description": "Optional. Requested page size. Server may return fewer items than requested. If unspecified, server will pick an appropriate default.", "location": "query", "format": "int32", "type": "integer" }, "customGrouping.fieldFilter": { "description": "Optional. Filterable parameters to be added to the grouping clause. Available fields could be fetched by calling insight list and get APIs in `BASIC` view. `=` is the only comparison operator supported. `AND` is the only logical operator supported. Usage: field_filter=\"fieldName1=fieldVal1 AND fieldName2=fieldVal2\". NOTE: Only `AND` conditions are allowed. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for the filtering the corresponding fields in this filter field. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query", "type": "string" } }, "description": "Gets the value for a selected particular insight based on the provided filters. Use the organization level path for fetching at org level and project level path for fetching the insight value specific to a particular project.", "parameterOrder": [ "insight" ], "path": "v1alpha/{+insight}:configuredInsight", "id": "beyondcorp.projects.locations.insights.configuredInsight", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaConfiguredInsightResponse" } } } }, "applicationDomains": { "methods": { "setIamPolicy": { "httpMethod": "POST", "response": { "$ref": "GoogleIamV1Policy" }, "path": "v1alpha/{+resource}:setIamPolicy", "id": "beyondcorp.projects.locations.applicationDomains.setIamPolicy", "request": { "$ref": "GoogleIamV1SetIamPolicyRequest" }, "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applicationDomains/{applicationDomainsId}:setIamPolicy", "parameters": { "resource": { "location": "path", "required": true, "pattern": "^projects/[^/]+/locations/[^/]+/applicationDomains/[^/]+$", "type": "string", "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors." }, "getIamPolicy": { "parameterOrder": [ "resource" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applicationDomains/{applicationDomainsId}:getIamPolicy", "parameters": { "resource": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/applicationDomains/[^/]+$", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." }, "options.requestedPolicyVersion": { "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).", "location": "query", "format": "int32", "type": "integer" } }, "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.", "httpMethod": "GET", "response": { "$ref": "GoogleIamV1Policy" }, "path": "v1alpha/{+resource}:getIamPolicy", "id": "beyondcorp.projects.locations.applicationDomains.getIamPolicy" }, "testIamPermissions": { "parameterOrder": [ "resource" ], "flatPath": "v1alpha/projects/{projectsId}/locations/{locationsId}/applicationDomains/{applicationDomainsId}:testIamPermissions", "parameters": { "resource": { "type": "string", "pattern": "^projects/[^/]+/locations/[^/]+/applicationDomains/[^/]+$", "location": "path", "required": true, "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field." } }, "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "httpMethod": "POST", "response": { "$ref": "GoogleIamV1TestIamPermissionsResponse" }, "id": "beyondcorp.projects.locations.applicationDomains.testIamPermissions", "request": { "$ref": "GoogleIamV1TestIamPermissionsRequest" }, "path": "v1alpha/{+resource}:testIamPermissions" } } } } } } }, "organizations": { "resources": { "locations": { "resources": { "operations": { "methods": { "get": { "httpMethod": "GET", "response": { "$ref": "GoogleLongrunningOperation" }, "id": "beyondcorp.organizations.locations.operations.get", "path": "v1alpha/{+name}", "parameterOrder": [ "name" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/operations/{operationsId}", "parameters": { "name": { "description": "The name of the operation resource.", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/operations/[^/]+$", "location": "path", "required": true } }, "description": "Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "delete": { "httpMethod": "DELETE", "response": { "$ref": "Empty" }, "path": "v1alpha/{+name}", "id": "beyondcorp.organizations.locations.operations.delete", "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/operations/{operationsId}", "parameters": { "name": { "location": "path", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/operations/[^/]+$", "type": "string", "description": "The name of the operation resource to be deleted." } }, "description": "Deletes a long-running operation. This method indicates that the client is no longer interested in the operation result. It does not cancel the operation. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`." }, "cancel": { "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/operations/{operationsId}:cancel", "parameters": { "name": { "description": "The name of the operation resource to be cancelled.", "pattern": "^organizations/[^/]+/locations/[^/]+/operations/[^/]+$", "type": "string", "location": "path", "required": true } }, "description": "Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of `1`, corresponding to `Code.CANCELLED`.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "beyondcorp.organizations.locations.operations.cancel", "request": { "$ref": "GoogleLongrunningCancelOperationRequest" }, "path": "v1alpha/{+name}:cancel", "httpMethod": "POST", "response": { "$ref": "Empty" } }, "list": { "id": "beyondcorp.organizations.locations.operations.list", "path": "v1alpha/{+name}/operations", "httpMethod": "GET", "response": { "$ref": "GoogleLongrunningListOperationsResponse" }, "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/operations", "parameters": { "filter": { "type": "string", "description": "The standard list filter.", "location": "query" }, "pageToken": { "type": "string", "description": "The standard list page token.", "location": "query" }, "returnPartialSuccess": { "description": "When set to `true`, operations that are reachable are returned as normal, and those that are unreachable are returned in the ListOperationsResponse.unreachable field. This can only be `true` when reading across collections. For example, when `parent` is set to `\"projects/example/locations/-\"`. This field is not supported by default and will result in an `UNIMPLEMENTED` error if set unless explicitly documented otherwise in service or product specific documentation.", "location": "query", "type": "boolean" }, "pageSize": { "format": "int32", "description": "The standard list page size.", "location": "query", "type": "integer" }, "name": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+$", "location": "path", "required": true, "description": "The name of the operation's parent resource." } }, "description": "Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ] } } }, "insights": { "methods": { "list": { "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaListInsightsResponse" }, "id": "beyondcorp.organizations.locations.insights.list", "path": "v1alpha/{+parent}/insights", "parameterOrder": [ "parent" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/insights", "parameters": { "parent": { "description": "Required. The resource name of InsightMetadata using the form: `organizations/{organization_id}/locations/{location}` `projects/{project_id}/locations/{location_id}`", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+$", "location": "path", "required": true }, "aggregation": { "location": "query", "type": "string", "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "description": "Optional. Aggregation type. The default is 'DAILY'.", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ] }, "orderBy": { "type": "string", "description": "Optional. Hint for how to order the results. This is currently ignored.", "location": "query" }, "pageSize": { "type": "integer", "description": "Optional. Requested page size. Server may return fewer items than requested. If unspecified, server will pick an appropriate default. NOTE: Default page size is 50.", "location": "query", "format": "int32" }, "filter": { "description": "Optional. Filter expression to restrict the insights returned. Supported filter fields: * `type` * `category` * `subCategory` Examples: * \"category = application AND type = count\" * \"category = application AND subCategory = iap\" * \"type = status\" Allowed values: * type: [count, latency, status, list] * category: [application, device, request, security] * subCategory: [iap, caa, webprotect] NOTE: Only equality based comparison is allowed. Only `AND` conjunction is allowed. NOTE: The 'AND' in the filter field needs to be in capital letters only. NOTE: Just filtering on `subCategory` is not allowed. It should be passed in with the parent `category` too. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query", "type": "string" }, "pageToken": { "description": "Optional. A token identifying a page of results the server should return.", "location": "query", "type": "string" }, "endTime": { "type": "string", "format": "google-datetime", "description": "Optional. Ending time for the duration for which insights are to be pulled. The default is the current time.", "location": "query" }, "view": { "description": "Required. List only metadata or full data.", "enum": [ "INSIGHT_VIEW_UNSPECIFIED", "BASIC", "FULL" ], "location": "query", "enumDescriptions": [ "The default / unset value. The API will default to the BASIC view.", "Include basic metadata about the insight, but not the insight data. This is the default value (for both ListInsights and GetInsight).", "Include everything." ], "type": "string" }, "startTime": { "type": "string", "format": "google-datetime", "description": "Optional. Starting time for the duration for which insights are to be pulled. The default is 7 days before the current time.", "location": "query" } }, "description": "Lists for all the available insights that could be fetched from the system. Allows to filter using category. Setting the `view` to `BASIC` will let you iterate over the list of insight metadatas.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "configuredInsight": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/insights/{insightsId}:configuredInsight", "parameters": { "pageToken": { "type": "string", "description": "Optional. Used to fetch the page represented by the token. Fetches the first page when not set.", "location": "query" }, "insight": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/insights/[^/]+$", "location": "path", "required": true, "description": "Required. The resource name of the insight using the form: `organizations/{organization_id}/locations/{location_id}/insights/{insight_id}` `projects/{project_id}/locations/{location_id}/insights/{insight_id}`." }, "customGrouping.groupFields": { "repeated": true, "type": "string", "description": "Required. Fields to be used for grouping. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for declaring the fields to be grouped-by here.", "location": "query" }, "startTime": { "type": "string", "description": "Required. Starting time for the duration for which insight is to be pulled.", "location": "query", "format": "google-datetime" }, "endTime": { "description": "Required. Ending time for the duration for which insight is to be pulled.", "location": "query", "format": "google-datetime", "type": "string" }, "aggregation": { "description": "Required. Aggregation type. Available aggregation could be fetched by calling insight list and get APIs in `BASIC` view.", "enum": [ "AGGREGATION_UNSPECIFIED", "HOURLY", "DAILY", "WEEKLY", "MONTHLY", "CUSTOM_DATE_RANGE" ], "location": "query", "enumDescriptions": [ "Unspecified.", "Insight should be aggregated at hourly level.", "Insight should be aggregated at daily level.", "Insight should be aggregated at weekly level.", "Insight should be aggregated at monthly level.", "Insight should be aggregated at the custom date range passed in as the start and end time in the request." ], "type": "string" }, "fieldFilter": { "description": "Optional. Other filterable/configurable parameters as applicable to the selected insight. Available fields could be fetched by calling insight list and get APIs in `BASIC` view. `=` is the only comparison operator supported. `AND` is the only logical operator supported. Usage: field_filter=\"fieldName1=fieldVal1 AND fieldName2=fieldVal2\". NOTE: Only `AND` conditions are allowed. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for the filtering the corresponding fields in this filter field. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query", "type": "string" }, "customGrouping.fieldFilter": { "description": "Optional. Filterable parameters to be added to the grouping clause. Available fields could be fetched by calling insight list and get APIs in `BASIC` view. `=` is the only comparison operator supported. `AND` is the only logical operator supported. Usage: field_filter=\"fieldName1=fieldVal1 AND fieldName2=fieldVal2\". NOTE: Only `AND` conditions are allowed. NOTE: Use the `filter_alias` from `Insight.Metadata.Field` message for the filtering the corresponding fields in this filter field. (These expressions are based on the filter language described at https://google.aip.dev/160).", "location": "query", "type": "string" }, "group": { "type": "string", "description": "Optional. Group id of the available groupings for the insight. Available groupings could be fetched by calling insight list and get APIs in `BASIC` view.", "location": "query" }, "pageSize": { "format": "int32", "description": "Optional. Requested page size. Server may return fewer items than requested. If unspecified, server will pick an appropriate default.", "location": "query", "type": "integer" } }, "description": "Gets the value for a selected particular insight based on the provided filters. Use the organization level path for fetching at org level and project level path for fetching the insight value specific to a particular project.", "parameterOrder": [ "insight" ], "path": "v1alpha/{+insight}:configuredInsight", "id": "beyondcorp.organizations.locations.insights.configuredInsight", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaConfiguredInsightResponse" } }, "get": { "parameterOrder": [ "name" ], "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/insights/{insightsId}", "parameters": { "name": { "location": "path", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/insights/[^/]+$", "type": "string", "description": "Required. The resource name of the insight using the form: `organizations/{organization_id}/locations/{location_id}/insights/{insight_id}` `projects/{project_id}/locations/{location_id}/insights/{insight_id}`" }, "view": { "location": "query", "enumDescriptions": [ "The default / unset value. The API will default to the BASIC view.", "Include basic metadata about the insight, but not the insight data. This is the default value (for both ListInsights and GetInsight).", "Include everything." ], "type": "string", "description": "Required. Metadata only or full data view.", "enum": [ "INSIGHT_VIEW_UNSPECIFIED", "BASIC", "FULL" ] } }, "description": "Gets the value for a selected particular insight with default configuration. The default aggregation level is 'DAILY' and no grouping will be applied or default grouping if applicable. The data will be returned for recent 7 days starting the day before. The insight data size will be limited to 50 rows. Use the organization level path for fetching at org level and project level path for fetching the insight value specific to a particular project. Setting the `view` to `BASIC` will only return the metadata for the insight.", "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformInsightsV1alphaInsight" }, "path": "v1alpha/{+name}", "id": "beyondcorp.organizations.locations.insights.get" } } }, "subscriptions": { "methods": { "cancel": { "parameterOrder": [ "name" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaCancelSubscriptionResponse" }, "id": "beyondcorp.organizations.locations.subscriptions.cancel", "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions/{subscriptionsId}:cancel", "parameters": { "name": { "location": "path", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/subscriptions/[^/]+$", "type": "string", "description": "Required. Name of the resource." }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Cancels an existing BeyondCorp Enterprise Subscription in a given organization. Location will always be global as BeyondCorp subscriptions are per organization. Returns the timestamp for when the cancellation will become effective", "path": "v1alpha/{+name}:cancel" }, "patch": { "parameterOrder": [ "name" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions/{subscriptionsId}", "parameters": { "name": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/subscriptions/[^/]+$", "location": "path", "required": true, "description": "Identifier. Unique resource name of the Subscription. The name is ignored when creating a subscription." }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" }, "updateMask": { "format": "google-fieldmask", "description": "Required. Field mask is used to specify the fields to be overwritten in the Subscription resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. Mutable fields: seat_count.", "location": "query", "type": "string" } }, "description": "Updates an existing BeyondCorp Enterprise Subscription in a given organization. Location will always be global as BeyondCorp subscriptions are per organization.", "httpMethod": "PATCH", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" }, "path": "v1alpha/{+name}", "id": "beyondcorp.organizations.locations.subscriptions.patch", "request": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" } }, "restart": { "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaRestartSubscriptionResponse" }, "parameterOrder": [ "name" ], "path": "v1alpha/{+name}:restart", "id": "beyondcorp.organizations.locations.subscriptions.restart", "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions/{subscriptionsId}:restart", "parameters": { "name": { "location": "path", "required": true, "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/subscriptions/[^/]+$", "description": "Required. Name of the resource." }, "requestId": { "type": "string", "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).", "location": "query" } }, "description": "Restarts an existing BeyondCorp Enterprise Subscription in a given organization, that is scheduled for cancellation. Location will always be global as BeyondCorp subscriptions are per organization. Returns the timestamp for when the cancellation will become effective" }, "get": { "id": "beyondcorp.organizations.locations.subscriptions.get", "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions/{subscriptionsId}", "parameters": { "name": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/subscriptions/[^/]+$", "location": "path", "required": true, "description": "Required. The resource name of Subscription using the form: `organizations/{organization_id}/locations/{location}/subscriptions/{subscription_id}`" } }, "description": "Gets details of a single Subscription.", "path": "v1alpha/{+name}", "parameterOrder": [ "name" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" } }, "list": { "parameterOrder": [ "parent" ], "httpMethod": "GET", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaListSubscriptionsResponse" }, "id": "beyondcorp.organizations.locations.subscriptions.list", "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions", "parameters": { "parent": { "location": "path", "required": true, "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+$", "description": "Required. The resource name of Subscription using the form: `organizations/{organization_id}/locations/{location}`" }, "pageSize": { "type": "integer", "description": "Optional. The maximum number of items to return. If not specified, a default value of 50 will be used by the service. Regardless of the page_size value, the response may include a partial list and a caller should only rely on response's next_page_token to determine if there are more instances left to be queried.", "location": "query", "format": "int32" }, "pageToken": { "description": "Optional. The next_page_token value returned from a previous ListSubscriptionsRequest, if any.", "location": "query", "type": "string" } }, "description": "Lists Subscriptions in a given organization and location.", "path": "v1alpha/{+parent}/subscriptions" }, "create": { "httpMethod": "POST", "response": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" }, "id": "beyondcorp.organizations.locations.subscriptions.create", "request": { "$ref": "GoogleCloudBeyondcorpSaasplatformSubscriptionsV1alphaSubscription" }, "path": "v1alpha/{+parent}/subscriptions", "parameterOrder": [ "parent" ], "flatPath": "v1alpha/organizations/{organizationsId}/locations/{locationsId}/subscriptions", "parameters": { "parent": { "description": "Required. The resource name of the subscription location using the form: `organizations/{organization_id}/locations/{location}`", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+$", "location": "path", "required": true } }, "description": "Creates a new BeyondCorp Enterprise Subscription in a given organization. Location will always be global as BeyondCorp subscriptions are per organization." } } } } } } } }, "rootUrl": "https://beyondcorp.googleapis.com/", "fullyEncodeReservedExpansion": true, "canonicalName": "BeyondCorp", "name": "beyondcorp", "auth": { "oauth2": { "scopes": { "https://www.googleapis.com/auth/cloud-platform": { "description": "See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account." } } } }, "batchPath": "batch", "title": "BeyondCorp API" }