class Google::Apis::IamV1::Rule

A rule to be applied in a Policy.

Attributes

action[RW]

Required Corresponds to the JSON property `action` @return [String]

conditions[RW]

Additional restrictions that must be met Corresponds to the JSON property `conditions` @return [Array<Google::Apis::IamV1::Condition>]

description[RW]

Human-readable description of the rule. Corresponds to the JSON property `description` @return [String]

in[RW]

The rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is in this set of entries. Corresponds to the JSON property `in` @return [Array<String>]

log_config[RW]

The config returned to callers of tech.iam.IAM.CheckPolicy for any entries that match the LOG action. Corresponds to the JSON property `logConfig` @return [Array<Google::Apis::IamV1::LogConfig>]

not_in[RW]

The rule matches if the PRINCIPAL/AUTHORITY_SELECTOR is not in this set of entries. The format for in and #not_in entries is the same as for members in a Binding (see google/iam/v1/policy.proto). Corresponds to the JSON property `notIn` @return [Array<String>]

permissions[RW]

A permission is a string of form '..' (e.g., 'storage.buckets.list'). A value of '*' matches all permissions, and a verb part of '*' (e.g., 'storage.buckets. *') matches all verbs. Corresponds to the JSON property `permissions` @return [Array<String>]

Public Class Methods

new(**args) click to toggle source
# File generated/google/apis/iam_v1/classes.rb, line 437
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File generated/google/apis/iam_v1/classes.rb, line 442
def update!(**args)
  @description = args[:description] if args.key?(:description)
  @permissions = args[:permissions] if args.key?(:permissions)
  @action = args[:action] if args.key?(:action)
  @in = args[:in] if args.key?(:in)
  @not_in = args[:not_in] if args.key?(:not_in)
  @conditions = args[:conditions] if args.key?(:conditions)
  @log_config = args[:log_config] if args.key?(:log_config)
end