BigQueryAuditMetadata

BigQueryAuditMetaData is exposed as part of the new AuditData.metadata messages.

JSON representation
{
  "firstPartyAppMetadata": {
    object (BigQueryAuditMetadata.FirstPartyAppMetadata)
  },

  // Union field event can be only one of the following:
  "jobInsertion": {
    object (BigQueryAuditMetadata.JobInsertion)
  },
  "jobChange": {
    object (BigQueryAuditMetadata.JobChange)
  },
  "jobDeletion": {
    object (BigQueryAuditMetadata.JobDeletion)
  },
  "datasetCreation": {
    object (BigQueryAuditMetadata.DatasetCreation)
  },
  "datasetChange": {
    object (BigQueryAuditMetadata.DatasetChange)
  },
  "datasetDeletion": {
    object (BigQueryAuditMetadata.DatasetDeletion)
  },
  "tableCreation": {
    object (BigQueryAuditMetadata.TableCreation)
  },
  "tableChange": {
    object (BigQueryAuditMetadata.TableChange)
  },
  "tableDeletion": {
    object (BigQueryAuditMetadata.TableDeletion)
  },
  "tableDataRead": {
    object (BigQueryAuditMetadata.TableDataRead)
  },
  "tableDataChange": {
    object (BigQueryAuditMetadata.TableDataChange)
  },
  "modelDeletion": {
    object (BigQueryAuditMetadata.ModelDeletion)
  },
  "modelCreation": {
    object (BigQueryAuditMetadata.ModelCreation)
  },
  "modelMetadataChange": {
    object (BigQueryAuditMetadata.ModelMetadataChange)
  },
  "modelDataChange": {
    object (BigQueryAuditMetadata.ModelDataChange)
  },
  "modelDataRead": {
    object (BigQueryAuditMetadata.ModelDataRead)
  },
  "routineCreation": {
    object (BigQueryAuditMetadata.RoutineCreation)
  },
  "routineChange": {
    object (BigQueryAuditMetadata.RoutineChange)
  },
  "routineDeletion": {
    object (BigQueryAuditMetadata.RoutineDeletion)
  },
  "rowAccessPolicyCreation": {
    object (BigQueryAuditMetadata.RowAccessPolicyCreation)
  },
  "rowAccessPolicyChange": {
    object (BigQueryAuditMetadata.RowAccessPolicyChange)
  },
  "rowAccessPolicyDeletion": {
    object (BigQueryAuditMetadata.RowAccessPolicyDeletion)
  },
  "unlinkDataset": {
    object (BigQueryAuditMetadata.UnlinkDataset)
  },
  "searchIndexCreation": {
    object (BigQueryAuditMetadata.SearchIndexCreation)
  },
  "searchIndexDeletion": {
    object (BigQueryAuditMetadata.SearchIndexDeletion)
  },
  "vectorIndexCreation": {
    object (BigQueryAuditMetadata.VectorIndexCreation)
  },
  "vectorIndexChange": {
    object (BigQueryAuditMetadata.VectorIndexChange)
  },
  "vectorIndexDeletion": {
    object (BigQueryAuditMetadata.VectorIndexDeletion)
  },
  "connectionChange": {
    object (BigQueryAuditMetadata.ConnectionChange)
  }
  // End of list of possible types for union field event.
}
Fields
firstPartyAppMetadata

object (BigQueryAuditMetadata.FirstPartyAppMetadata)

First party (Google) application specific metadata.

Union field event. BigQuery event information. event can be only one of the following:
jobInsertion

object (BigQueryAuditMetadata.JobInsertion)

Job insertion event.

jobChange

object (BigQueryAuditMetadata.JobChange)

Job state change event.

jobDeletion

object (BigQueryAuditMetadata.JobDeletion)

Job deletion event.

datasetCreation

object (BigQueryAuditMetadata.DatasetCreation)

Dataset creation event.

datasetChange

object (BigQueryAuditMetadata.DatasetChange)

Dataset change event.

datasetDeletion

object (BigQueryAuditMetadata.DatasetDeletion)

Dataset deletion event.

tableCreation

object (BigQueryAuditMetadata.TableCreation)

Table creation event.

tableChange

object (BigQueryAuditMetadata.TableChange)

Table metadata change event.

tableDeletion

object (BigQueryAuditMetadata.TableDeletion)

Table deletion event.

tableDataRead

object (BigQueryAuditMetadata.TableDataRead)

Table data read event.

tableDataChange

object (BigQueryAuditMetadata.TableDataChange)

Table data change event.

modelDeletion

object (BigQueryAuditMetadata.ModelDeletion)

Model deletion event.

modelCreation

object (BigQueryAuditMetadata.ModelCreation)

Model creation event.

modelMetadataChange

object (BigQueryAuditMetadata.ModelMetadataChange)

Model metadata change event.

modelDataChange

object (BigQueryAuditMetadata.ModelDataChange)

Model data change event.

modelDataRead

object (BigQueryAuditMetadata.ModelDataRead)

Model data read event.

routineCreation

object (BigQueryAuditMetadata.RoutineCreation)

Routine creation event.

routineChange

object (BigQueryAuditMetadata.RoutineChange)

Routine change event.

routineDeletion

object (BigQueryAuditMetadata.RoutineDeletion)

Routine deletion event.

rowAccessPolicyCreation

object (BigQueryAuditMetadata.RowAccessPolicyCreation)

Row access policy create event.

rowAccessPolicyChange

object (BigQueryAuditMetadata.RowAccessPolicyChange)

Row access policy change event.

rowAccessPolicyDeletion

object (BigQueryAuditMetadata.RowAccessPolicyDeletion)

Row access policy deletion event.

searchIndexCreation

object (BigQueryAuditMetadata.SearchIndexCreation)

Search index creation event.

searchIndexDeletion

object (BigQueryAuditMetadata.SearchIndexDeletion)

Search index deletion event.

vectorIndexCreation

object (BigQueryAuditMetadata.VectorIndexCreation)

Vector index creation event.

vectorIndexChange

object (BigQueryAuditMetadata.VectorIndexChange)

Vector index change event.

vectorIndexDeletion

object (BigQueryAuditMetadata.VectorIndexDeletion)

Vector index deletion event.

connectionChange

object (BigQueryAuditMetadata.ConnectionChange)

Connection change event.

BigQueryAuditMetadata.JobInsertion

Job insertion event.

JSON representation
{
  "job": {
    object (BigQueryAuditMetadata.Job)
  },
  "reason": enum (BigQueryAuditMetadata.JobInsertion.Reason)
}
Fields
job

object (BigQueryAuditMetadata.Job)

Job metadata.

reason

enum (BigQueryAuditMetadata.JobInsertion.Reason)

Describes how the job was inserted.

BigQueryAuditMetadata.Job

BigQuery job.

JSON representation
{
  "jobName": string,
  "jobConfig": {
    object (BigQueryAuditMetadata.JobConfig)
  },
  "jobStatus": {
    object (BigQueryAuditMetadata.JobStatus)
  },
  "jobStats": {
    object (BigQueryAuditMetadata.JobStats)
  }
}
Fields
jobName

string

Job URI.

Format: projects/<projectId>/jobs/<jobId>.

jobConfig

object (BigQueryAuditMetadata.JobConfig)

Job configuration.

jobStatus

object (BigQueryAuditMetadata.JobStatus)

Job status.

jobStats

object (BigQueryAuditMetadata.JobStats)

Job statistics.

BigQueryAuditMetadata.JobConfig

Job configuration. See the Jobs API resource for more details on individual fields.

JSON representation
{
  "type": enum (BigQueryAuditMetadata.JobConfig.Type),
  "labels": {
    string: string,
    ...
  },
  "reservation": string,

  // Union field config can be only one of the following:
  "queryConfig": {
    object (BigQueryAuditMetadata.JobConfig.Query)
  },
  "loadConfig": {
    object (BigQueryAuditMetadata.JobConfig.Load)
  },
  "extractConfig": {
    object (BigQueryAuditMetadata.JobConfig.Extract)
  },
  "tableCopyConfig": {
    object (BigQueryAuditMetadata.JobConfig.TableCopy)
  }
  // End of list of possible types for union field config.
}
Fields
type

enum (BigQueryAuditMetadata.JobConfig.Type)

Job type.

labels

map (key: string, value: string)

Labels provided for the job.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.

reservation

string

User specified reservation for the job.

Union field config. Job configuration information. config can be only one of the following:
queryConfig

object (BigQueryAuditMetadata.JobConfig.Query)

Query job information.

loadConfig

object (BigQueryAuditMetadata.JobConfig.Load)

Load job information.

extractConfig

object (BigQueryAuditMetadata.JobConfig.Extract)

Extract job information.

tableCopyConfig

object (BigQueryAuditMetadata.JobConfig.TableCopy)

TableCopy job information.

BigQueryAuditMetadata.JobConfig.Query

Query job configuration.

JSON representation
{
  "query": string,
  "queryTruncated": boolean,
  "destinationTable": string,
  "createDisposition": enum (BigQueryAuditMetadata.CreateDisposition),
  "writeDisposition": enum (BigQueryAuditMetadata.WriteDisposition),
  "defaultDataset": string,
  "tableDefinitions": [
    {
      object (BigQueryAuditMetadata.TableDefinition)
    }
  ],
  "priority": enum (BigQueryAuditMetadata.JobConfig.Query.Priority),
  "destinationTableEncryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  },
  "statementType": enum (BigQueryAuditMetadata.QueryStatementType)
}
Fields
query

string

The SQL query to run. Truncated if exceeds 50K.

queryTruncated

boolean

True if the query field was truncated.

destinationTable

string

The destination table for the query results.

createDisposition

enum (BigQueryAuditMetadata.CreateDisposition)

Destination table create disposition.

writeDisposition

enum (BigQueryAuditMetadata.WriteDisposition)

Destination table write disposition.

defaultDataset

string

Default dataset for the query.

tableDefinitions[]

object (BigQueryAuditMetadata.TableDefinition)

External data sources used in the query.

priority

enum (BigQueryAuditMetadata.JobConfig.Query.Priority)

Priority given to the query.

destinationTableEncryption

object (BigQueryAuditMetadata.EncryptionInfo)

Result table encryption information. Set when non-default encryption is used.

statementType

enum (BigQueryAuditMetadata.QueryStatementType)

Type of the query.

BigQueryAuditMetadata.TableDefinition

Definition of an external data source used in a query.

JSON representation
{
  "name": string,
  "sourceUris": [
    string
  ]
}
Fields
name

string

Name of the table, used in queries.

sourceUris[]

string

URIs for the data.

BigQueryAuditMetadata.EncryptionInfo

Encryption properties for a table or a job

JSON representation
{
  "kmsKeyName": string
}
Fields
kmsKeyName

string

Cloud kms key identifier.

Format: projects/<projectId>/locations/<location>/keyRings/<key_ring_name>/cryptoKeys/<key_name>

BigQueryAuditMetadata.JobConfig.Load

Load job configuration.

JSON representation
{
  "sourceUris": [
    string
  ],
  "sourceUrisTruncated": boolean,
  "schemaJson": string,
  "schemaJsonTruncated": boolean,
  "destinationTable": string,
  "createDisposition": enum (BigQueryAuditMetadata.CreateDisposition),
  "writeDisposition": enum (BigQueryAuditMetadata.WriteDisposition),
  "destinationTableEncryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  }
}
Fields
sourceUris[]

string

URIs for the data to be imported. Entire list is truncated if exceeds 40K.

sourceUrisTruncated

boolean

True if the source_URIs field was truncated.

schemaJson

string

The table schema in JSON format. Entire field is truncated if exceeds 40K.

schemaJsonTruncated

boolean

True if the schemaJson field was truncated.

destinationTable

string

The destination table for the import.

createDisposition

enum (BigQueryAuditMetadata.CreateDisposition)

Destination table create disposition.

writeDisposition

enum (BigQueryAuditMetadata.WriteDisposition)

Destination table write disposition.

destinationTableEncryption

object (BigQueryAuditMetadata.EncryptionInfo)

Result table encryption information. Set when non-default encryption is used.

BigQueryAuditMetadata.JobConfig.Extract

Extract job configuration.

JSON representation
{
  "destinationUris": [
    string
  ],
  "destinationUrisTruncated": boolean,

  // Union field source can be only one of the following:
  "sourceTable": string,
  "sourceModel": string
  // End of list of possible types for union field source.
}
Fields
destinationUris[]

string

URIs where extracted data should be written. Entire list is truncated if exceeds 50K.

destinationUrisTruncated

boolean

True if the destination_URIs field was truncated.

Union field source.

source can be only one of the following:

sourceTable

string

The source table.

sourceModel

string

The source model.

BigQueryAuditMetadata.JobConfig.TableCopy

Table copy job configuration.

JSON representation
{
  "sourceTables": [
    string
  ],
  "sourceTablesTruncated": boolean,
  "destinationTable": string,
  "createDisposition": enum (BigQueryAuditMetadata.CreateDisposition),
  "writeDisposition": enum (BigQueryAuditMetadata.WriteDisposition),
  "destinationTableEncryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  },
  "operationType": enum (BigQueryAuditMetadata.OperationType),
  "destinationExpirationTime": string
}
Fields
sourceTables[]

string

Source tables. Entire list is truncated if exceeds 50K.

sourceTablesTruncated

boolean

True if the sourceTables field was truncated.

destinationTable

string

Destination table.

createDisposition

enum (BigQueryAuditMetadata.CreateDisposition)

Destination table create disposition.

writeDisposition

enum (BigQueryAuditMetadata.WriteDisposition)

Destination table write disposition.

destinationTableEncryption

object (BigQueryAuditMetadata.EncryptionInfo)

Result table encryption information. Set when non-default encryption is used.

operationType

enum (BigQueryAuditMetadata.OperationType)

Supported operation types in the table copy job.

destinationExpirationTime

string (Timestamp format)

Expiration time set on the destination table. Expired tables will be deleted and their storage reclaimed.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

BigQueryAuditMetadata.JobStatus

Status of a job.

JSON representation
{
  "jobState": enum (BigQueryAuditMetadata.JobState),
  "errorResult": {
    object (Status)
  },
  "errors": [
    {
      object (Status)
    }
  ]
}
Fields
jobState

enum (BigQueryAuditMetadata.JobState)

State of the job.

errorResult

object (Status)

Job error, if the job failed.

errors[]

object (Status)

Errors encountered during the running of the job. Does not necessarily mean that the job has completed or was unsuccessful.

BigQueryAuditMetadata.JobStats

Job statistics.

JSON representation
{
  "createTime": string,
  "startTime": string,
  "endTime": string,
  "totalSlotMs": string,
  "reservationUsage": [
    {
      object (BigQueryAuditMetadata.JobStats.ReservationResourceUsage)
    }
  ],
  "reservation": string,
  "parentJobName": string,

  // Union field extended can be only one of the following:
  "queryStats": {
    object (BigQueryAuditMetadata.JobStats.Query)
  },
  "loadStats": {
    object (BigQueryAuditMetadata.JobStats.Load)
  },
  "extractStats": {
    object (BigQueryAuditMetadata.JobStats.Extract)
  }
  // End of list of possible types for union field extended.
}
Fields
createTime

string (Timestamp format)

Job creation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

startTime

string (Timestamp format)

Job execution start time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

endTime

string (Timestamp format)

Job completion time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

totalSlotMs

string (int64 format)

The total number of slot-ms consumed by the query job.

reservationUsage[]
(deprecated)

object (BigQueryAuditMetadata.JobStats.ReservationResourceUsage)

Deprecated: Reservation usage attributed from each tier of a reservation hierarchy. This field is empty because the provided reservation usage statistics are not accurate. Use the INFORMATION_SCHEMA.JOBS view to find the average slot usage for a given period of time.

reservation

string

Reservation name or "unreserved" for on-demand resource usage.

parentJobName

string

Parent job name. Only present for child jobs.

Union field extended. Statistics specific to the job type. extended can be only one of the following:
queryStats

object (BigQueryAuditMetadata.JobStats.Query)

Query job statistics.

loadStats

object (BigQueryAuditMetadata.JobStats.Load)

Load job statistics.

extractStats

object (BigQueryAuditMetadata.JobStats.Extract)

Extract job statistics.

BigQueryAuditMetadata.JobStats.Query

Query job statistics.

JSON representation
{
  "totalProcessedBytes": string,
  "totalBilledBytes": string,
  "billingTier": integer,
  "referencedTables": [
    string
  ],
  "referencedViews": [
    string
  ],
  "referencedRoutines": [
    string
  ],
  "outputRowCount": string,
  "cacheHit": boolean
}
Fields
totalProcessedBytes

string (int64 format)

Total bytes processed by the query job.

totalBilledBytes

string (int64 format)

Total bytes billed by the query job.

billingTier

integer

The tier assigned by the CPU-based billing.

referencedTables[]

string

Tables accessed by the query job.

referencedViews[]

string

Views accessed by the query job.

referencedRoutines[]

string

Routines accessed by the query job.

outputRowCount

string (int64 format)

Number of output rows produced by the query job.

cacheHit

boolean

True if the query job results were read from the query cache.

BigQueryAuditMetadata.JobStats.Load

Load job statistics.

JSON representation
{
  "totalOutputBytes": string
}
Fields
totalOutputBytes

string (int64 format)

Total bytes loaded by the import job.

BigQueryAuditMetadata.JobStats.Extract

Extract job statistics.

JSON representation
{
  "totalInputBytes": string,
  "totalBytesExtracted": string
}
Fields
totalInputBytes

string (int64 format)

Total bytes exported by the extract job.This is the byte count as computed by BigQuery for billing purposes and doesn't have any relationship with the number of actual result bytes extracted in the desired format.

totalBytesExtracted

string (int64 format)

Bytes extracted in output, that will always be populated for exports (even if the byte count for billing is 0)

BigQueryAuditMetadata.JobStats.ReservationResourceUsage

Job resource usage breakdown by reservation.

JSON representation
{
  "name": string,
  "slotMs": string
}
Fields
name

string

Reservation name or "unreserved" for on-demand resources usage.

slotMs

string (int64 format)

Total slot milliseconds used by the reservation for a particular job.

BigQueryAuditMetadata.JobChange

Job state change event.

JSON representation
{
  "before": enum (BigQueryAuditMetadata.JobState),
  "after": enum (BigQueryAuditMetadata.JobState),
  "job": {
    object (BigQueryAuditMetadata.Job)
  }
}
Fields
before

enum (BigQueryAuditMetadata.JobState)

Job state before the job state change.

after

enum (BigQueryAuditMetadata.JobState)

Job state after the job state change.

job

object (BigQueryAuditMetadata.Job)

Job metadata.

BigQueryAuditMetadata.JobDeletion

Job deletion event.

JSON representation
{
  "jobName": string,
  "reason": enum (BigQueryAuditMetadata.JobDeletion.Reason)
}
Fields
jobName

string

Job URI.

Format: projects/<projectId>/jobs/<jobId>.

reason

enum (BigQueryAuditMetadata.JobDeletion.Reason)

Describes how the job was deleted.

BigQueryAuditMetadata.DatasetCreation

Dataset creation event.

JSON representation
{
  "dataset": {
    object (BigQueryAuditMetadata.Dataset)
  },
  "reason": enum (BigQueryAuditMetadata.DatasetCreation.Reason),
  "jobName": string
}
Fields
dataset

object (BigQueryAuditMetadata.Dataset)

Dataset metadata.

reason

enum (BigQueryAuditMetadata.DatasetCreation.Reason)

Describes how the dataset was created.

jobName

string

The URI of the job that created the dataset. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.Dataset

BigQuery dataset.

JSON representation
{
  "datasetName": string,
  "datasetInfo": {
    object (BigQueryAuditMetadata.EntityInfo)
  },
  "createTime": string,
  "updateTime": string,
  "acl": {
    object (BigQueryAuditMetadata.BigQueryAcl)
  },
  "defaultTableExpireDuration": string,
  "defaultEncryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  },
  "defaultCollation": string,
  "tags": {
    string: string,
    ...
  }
}
Fields
datasetName

string

Dataset URI.

Format: projects/<projectId>/datasets/<datasetId>.

datasetInfo

object (BigQueryAuditMetadata.EntityInfo)

User-provided metadata for the dataset.

createTime

string (Timestamp format)

Dataset creation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

updateTime

string (Timestamp format)

Dataset metadata last update time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

acl

object (BigQueryAuditMetadata.BigQueryAcl)

The access control list for the dataset.

defaultTableExpireDuration

string (Duration format)

Default expiration time for tables in the dataset.

A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".

defaultEncryption

object (BigQueryAuditMetadata.EncryptionInfo)

Default encryption for tables in the dataset.

defaultCollation

string

Default collation for the dataset.

tags

map (key: string, value: string)

IAM Tags attached to this entity.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.

BigQueryAuditMetadata.EntityInfo

User-provided metadata for an entity, e.g. dataset, table or model.

JSON representation
{
  "friendlyName": string,
  "description": string,
  "labels": {
    string: string,
    ...
  }
}
Fields
friendlyName

string

A short name for the entity.

description

string

A long description for the entity.

labels

map (key: string, value: string)

Labels provided for the entity.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.

BigQueryAuditMetadata.BigQueryAcl

An access control list.

JSON representation
{
  "policy": {
    object (Policy)
  },
  "authorizedViews": [
    string
  ]
}
Fields
policy

object (Policy)

IAM policy for the resource.

authorizedViews[]

string

List of authorized views for a dataset.

Format: projects/<projectId>/datasets/<datasetId>/tables/<view_id>.

BigQueryAuditMetadata.DatasetChange

Dataset change event.

JSON representation
{
  "dataset": {
    object (BigQueryAuditMetadata.Dataset)
  },
  "reason": enum (BigQueryAuditMetadata.DatasetChange.Reason),
  "jobName": string,
  "bindingDeltas": [
    {
      object (BindingDelta)
    }
  ],
  "accessChanges": [
    {
      object (BigQueryAuditMetadata.AccessChange)
    }
  ]
}
Fields
dataset

object (BigQueryAuditMetadata.Dataset)

Dataset metadata after the change.

reason

enum (BigQueryAuditMetadata.DatasetChange.Reason)

Describes how the dataset was changed.

jobName

string

The URI of the job that updated the dataset. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

bindingDeltas[]

object (BindingDelta)

List of IAM policy deltas. This field contains the difference between the original policy and the new policy when the IAM policy is updated via SetIamPolicy API.

accessChanges[]

object (BigQueryAuditMetadata.AccessChange)

List of access changes. This field contains the difference between the original ACLs and the new ACLs when the ACLs are updated via datasets.update API.

BindingDelta

One delta entry for Binding. Each individual change (only one member in each entry) to a binding will be a separate entry.

JSON representation
{
  "action": enum (BindingDelta.Action),
  "role": string,
  "member": string,
  "condition": {
    object (Expr)
  }
}
Fields
action

enum (BindingDelta.Action)

The action that was performed on a Binding. Required

role

string

Role that is assigned to members. For example, roles/viewer, roles/editor, or roles/owner. Required

member

string

A single identity requesting access for a Google Cloud resource. Follows the same format of Binding.members. Required

condition

object (Expr)

The condition that is associated with this binding.

BigQueryAuditMetadata.AccessChange

One change entry for Access.

JSON representation
{
  "action": enum (BigQueryAuditMetadata.AccessChange.Action),
  "access": {
    "role": string,
    "userByEmail": string,
    "groupByEmail": string,
    "domain": string,
    "specialGroup": string,
    "iamMember": string,
    "view": {
      object (TableReference)
    },
    "routine": {
      object (RoutineReference)
    },
    "dataset": {
      object (DatasetAccessEntry)
    },
    "condition": {
      object (Expr)
    }
  }
}
Fields
action

enum (BigQueryAuditMetadata.AccessChange.Action)

The action that was performed on an access.

access

object

Access entry.

access.role

string

An IAM role ID that should be granted to the user, group, or domain specified in this access entry. The following legacy mappings will be applied:

  • OWNER: roles/bigquery.dataOwner
  • WRITER: roles/bigquery.dataEditor
  • READER: roles/bigquery.dataViewer

This field will accept any of the above formats, but will return only the legacy format. For example, if you set this field to "roles/bigquery.dataOwner", it will be returned back as "OWNER".

access.userByEmail

string

[Pick one] An email address of a user to grant access to. For example: fred@example.com. Maps to IAM policy member "user:EMAIL" or "serviceAccount:EMAIL".

access.groupByEmail

string

[Pick one] An email address of a Google Group to grant access to. Maps to IAM policy member "group:GROUP".

access.domain

string

[Pick one] A domain to grant access to. Any users signed in with the domain specified will be granted the specified access. Example: "example.com". Maps to IAM policy member "domain:DOMAIN".

access.specialGroup

string

[Pick one] A special group to grant access to. Possible values include:

  • projectOwners: Owners of the enclosing project.
  • projectReaders: Readers of the enclosing project.
  • projectWriters: Writers of the enclosing project.
  • allAuthenticatedUsers: All authenticated BigQuery users.

Maps to similarly-named IAM members.

access.iamMember

string

[Pick one] Some other type of member that appears in the IAM Policy but isn't a user, group, domain, or special group.

access.view

object (TableReference)

[Pick one] A view from a different dataset to grant access to. Queries executed against that view will have read access to views/tables/routines in this dataset. The role field is not required when this field is set. If that view is updated by any user, access to the view needs to be granted again via an update operation.

access.routine

object (RoutineReference)

[Pick one] A routine from a different dataset to grant access to. Queries executed against that routine will have read access to views/tables/routines in this dataset. Only UDF is supported for now. The role field is not required when this field is set. If that routine is updated by any user, access to the routine needs to be granted again via an update operation.

access.dataset

object (DatasetAccessEntry)

[Pick one] A grant authorizing all resources of a particular type in a particular dataset access to this dataset. Only views are supported for now. The role field is not required when this field is set. If that dataset is deleted and re-created, its access needs to be granted again via an update operation.

access.condition

object (Expr)

Optional. condition for the binding. If CEL expression in this field is true, this access binding will be considered

BigQueryAuditMetadata.DatasetDeletion

Dataset deletion event.

JSON representation
{
  "reason": enum (BigQueryAuditMetadata.DatasetDeletion.Reason),
  "jobName": string
}
Fields
reason

enum (BigQueryAuditMetadata.DatasetDeletion.Reason)

Describes how the dataset was deleted.

jobName

string

The URI of the job that deleted the dataset. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.TableCreation

Table creation event.

JSON representation
{
  "table": {
    object (BigQueryAuditMetadata.Table)
  },
  "reason": enum (BigQueryAuditMetadata.TableCreation.Reason),
  "jobName": string
}
Fields
table

object (BigQueryAuditMetadata.Table)

Table metadata.

reason

enum (BigQueryAuditMetadata.TableCreation.Reason)

Describes how the table was created.

jobName

string

The URI of the job that created a table. Present if the reason is JOB or QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.Table

BigQuery table.

JSON representation
{
  "tableName": string,
  "tableInfo": {
    object (BigQueryAuditMetadata.EntityInfo)
  },
  "schemaJson": string,
  "schemaJsonTruncated": boolean,
  "view": {
    object (BigQueryAuditMetadata.TableViewDefinition)
  },
  "expireTime": string,
  "createTime": string,
  "updateTime": string,
  "truncateTime": string,
  "encryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  },
  "defaultCollation": string,
  "tableConstraints": {
    object (BigQueryAuditMetadata.TableConstraints)
  },
  "tags": {
    string: string,
    ...
  },
  "timePartitioning": {
    object (TimePartitioning)
  },
  "rangePartitioning": {
    object (RangePartitioning)
  },
  "clustering": {
    object (Clustering)
  },
  "requirePartitionFilter": boolean,
  "partitionDefinition": {
    object (PartitioningDefinition)
  }
}
Fields
tableName

string

Table URI.

Format: projects/<projectId>/datasets/<datasetId>/tables/<tableId>.

tableInfo

object (BigQueryAuditMetadata.EntityInfo)

User-provided metadata for the table.

schemaJson

string

A JSON representation of the table's schema. Entire field is truncated if exceeds 40K.

schemaJsonTruncated

boolean

True if the schemaJson field was truncated.

view

object (BigQueryAuditMetadata.TableViewDefinition)

View metadata. Only present for views.

expireTime

string (Timestamp format)

Table expiration time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

createTime

string (Timestamp format)

The table creation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

updateTime

string (Timestamp format)

The last time metadata update time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

truncateTime

string (Timestamp format)

The last table truncation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

encryption

object (BigQueryAuditMetadata.EncryptionInfo)

Table encryption information. Set when non-default encryption is used.

defaultCollation

string

The default collation of the table.

tableConstraints

object (BigQueryAuditMetadata.TableConstraints)

The table constraints.

tags

map (key: string, value: string)

IAM Tags attached to this entity.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.

timePartitioning

object (TimePartitioning)

Time-based partitioning specifications for this table if specified.

rangePartitioning

object (RangePartitioning)

Range partitioning specification for this table if specified.

clustering

object (Clustering)

Clustering specification for the table.

requirePartitionFilter

boolean

If set to true, queries over this table require a partition filter that can be used for partition elimination to be specified.

partitionDefinition

object (PartitioningDefinition)

The partitioning information, which includes managed table, external table and metastore partitioned table partition information.

BigQueryAuditMetadata.TableViewDefinition

View definition.

JSON representation
{
  "query": string,
  "queryTruncated": boolean,
  "privacyPolicy": {
    object (PrivacyPolicy)
  }
}
Fields
query

string

SQL query defining the view. Truncated if exceeds 40K.

queryTruncated

boolean

True if the schemaJson field was truncated.

privacyPolicy

object (PrivacyPolicy)

Privacy Policy for view.

PrivacyPolicy

Represents privacy policy that contains the privacy requirements specified by the data owner. Currently, this is only supported on views.

JSON representation
{

  // Union field privacy_policy can be only one of the following:
  "aggregationThresholdPolicy": {
    object (AggregationThresholdPolicy)
  },
  "differentialPrivacyPolicy": {
    object (DifferentialPrivacyPolicy)
  }
  // End of list of possible types for union field privacy_policy.
  "joinRestrictionPolicy": {
    object (JoinRestrictionPolicy)
  }
}
Fields
Union field privacy_policy. Privacy policy associated with this requirement specification. Only one of the privacy methods is allowed per data source object. privacy_policy can be only one of the following:
aggregationThresholdPolicy

object (AggregationThresholdPolicy)

Optional. Policy used for aggregation thresholds.

differentialPrivacyPolicy

object (DifferentialPrivacyPolicy)

Optional. Policy used for differential privacy.

joinRestrictionPolicy

object (JoinRestrictionPolicy)

Optional. Join restriction policy is outside of the one of policies, since this policy can be set along with other policies. This policy gives data providers the ability to enforce joins on the 'joinAllowedColumns' when data is queried from a privacy protected view.

AggregationThresholdPolicy

Represents privacy policy associated with "aggregation threshold" method.

JSON representation
{
  "privacyUnitColumns": [
    string
  ],
  "threshold": string
}
Fields
privacyUnitColumns[]

string

Optional. The privacy unit column(s) associated with this policy. For now, only one column per data source object (table, view) is allowed as a privacy unit column. Representing as a repeated field in metadata for extensibility to multiple columns in future. Duplicates and Repeated struct fields are not allowed. For nested fields, use dot notation ("outer.inner")

threshold

string (int64 format)

Optional. The threshold for the "aggregation threshold" policy.

DifferentialPrivacyPolicy

Represents privacy policy associated with "differential privacy" method.

JSON representation
{
  "maxEpsilonPerQuery": number,
  "deltaPerQuery": number,
  "maxGroupsContributed": string,
  "privacyUnitColumn": string,
  "epsilonBudget": number,
  "deltaBudget": number,
  "epsilonBudgetRemaining": number,
  "deltaBudgetRemaining": number
}
Fields
maxEpsilonPerQuery

number

Optional. The maximum epsilon value that a query can consume. If the subscriber specifies epsilon as a parameter in a SELECT query, it must be less than or equal to this value. The epsilon parameter controls the amount of noise that is added to the groups — a higher epsilon means less noise.

deltaPerQuery

number

Optional. The delta value that is used per query. Delta represents the probability that any row will fail to be epsilon differentially private. Indicates the risk associated with exposing aggregate rows in the result of a query.

maxGroupsContributed

string (int64 format)

Optional. The maximum groups contributed value that is used per query. Represents the maximum number of groups to which each protected entity can contribute. Changing this value does not improve or worsen privacy. The best value for accuracy and utility depends on the query and data.

privacyUnitColumn

string

Optional. The privacy unit column associated with this policy. Differential privacy policies can only have one privacy unit column per data source object (table, view).

epsilonBudget

number

Optional. The total epsilon budget for all queries against the privacy-protected view. Each subscriber query against this view charges the amount of epsilon they request in their query. If there is sufficient budget, then the subscriber query attempts to complete. It might still fail due to other reasons, in which case the charge is refunded. If there is insufficient budget the query is rejected. There might be multiple charge attempts if a single query references multiple views. In this case there must be sufficient budget for all charges or the query is rejected and charges are refunded in best effort. The budget does not have a refresh policy and can only be updated via ALTER VIEW or circumvented by creating a new view that can be queried with a fresh budget.

deltaBudget

number

Optional. The total delta budget for all queries against the privacy-protected view. Each subscriber query against this view charges the amount of delta that is pre-defined by the contributor through the privacy policy deltaPerQuery field. If there is sufficient budget, then the subscriber query attempts to complete. It might still fail due to other reasons, in which case the charge is refunded. If there is insufficient budget the query is rejected. There might be multiple charge attempts if a single query references multiple views. In this case there must be sufficient budget for all charges or the query is rejected and charges are refunded in best effort. The budget does not have a refresh policy and can only be updated via ALTER VIEW or circumvented by creating a new view that can be queried with a fresh budget.

epsilonBudgetRemaining

number

Output only. The epsilon budget remaining. If budget is exhausted, no more queries are allowed. Note that the budget for queries that are in progress is deducted before the query executes. If the query fails or is cancelled then the budget is refunded. In this case the amount of budget remaining can increase.

deltaBudgetRemaining

number

Output only. The delta budget remaining. If budget is exhausted, no more queries are allowed. Note that the budget for queries that are in progress is deducted before the query executes. If the query fails or is cancelled then the budget is refunded. In this case the amount of budget remaining can increase.

JoinRestrictionPolicy

Represents privacy policy associated with "join restrictions". Join restriction gives data providers the ability to enforce joins on the 'joinAllowedColumns' when data is queried from a privacy protected view.

JSON representation
{
  "joinAllowedColumns": [
    string
  ],
  "joinCondition": enum (JoinRestrictionPolicy.JoinCondition)
}
Fields
joinAllowedColumns[]

string

Optional. The only columns that joins are allowed on. This field is must be specified for join_conditions JOIN_ANY and JOIN_ALL and it cannot be set for JOIN_BLOCKED.

joinCondition

enum (JoinRestrictionPolicy.JoinCondition)

Optional. Specifies if a join is required or not on queries for the view. Default is JOIN_CONDITION_UNSPECIFIED.

BigQueryAuditMetadata.TableConstraints

Describes constraints defined on a BigQuery table.

JSON representation
{
  "primaryKey": {
    object (BigQueryAuditMetadata.TableConstraints.PrimaryKey)
  },
  "foreignKeys": [
    {
      object (BigQueryAuditMetadata.TableConstraints.ForeignKey)
    }
  ]
}
Fields
primaryKey

object (BigQueryAuditMetadata.TableConstraints.PrimaryKey)

The primary key of the table.

foreignKeys[]

object (BigQueryAuditMetadata.TableConstraints.ForeignKey)

Foreign keys of the table.

BigQueryAuditMetadata.TableConstraints.PrimaryKey

Describes a primary key defined on a table.

JSON representation
{
  "columns": [
    string
  ]
}
Fields
columns[]

string

Table columns that are part of the primary key.

BigQueryAuditMetadata.TableConstraints.ForeignKey

Describes a foreign key defined on a table.

JSON representation
{
  "name": string,
  "referencingColumns": [
    string
  ],
  "referencedColumns": [
    string
  ],
  "referencedTableId": string,
  "referencedDatasetId": string,
  "referencedProjectId": string
}
Fields
name

string

The name of the foreign key.

referencingColumns[]

string

Table columns that are part of the foreign key.

referencedColumns[]

string

Columns that are part of the referenced key.

referencedTableId

string

The referenced table id.

referencedDatasetId

string

The dataset of the referenced table.

referencedProjectId

string

The project of the referenced table.

TimePartitioning

JSON representation
{
  "type": string,
  "expirationMs": string,
  "field": string,
  "requirePartitionFilter": boolean
}
Fields
type

string

Required. The supported types are DAY, HOUR, MONTH, and YEAR, which will generate one partition per day, hour, month, and year, respectively.

expirationMs

string (Int64Value format)

Optional. Number of milliseconds for which to keep the storage for a partition. A wrapper is used here because 0 is an invalid value.

field

string

Optional. If not set, the table is partitioned by pseudo column '_PARTITIONTIME'; if set, the table is partitioned by this field. The field must be a top-level TIMESTAMP or DATE field. Its mode must be NULLABLE or REQUIRED. A wrapper is used here because an empty string is an invalid value.

requirePartitionFilter
(deprecated)

boolean

If set to true, queries over this table require a partition filter that can be used for partition elimination to be specified. This field is deprecated; please set the field with the same name on the table itself instead. This field needs a wrapper because we want to output the default value, false, if the user explicitly set it.

RangePartitioning

JSON representation
{
  "field": string,
  "range": {
    "start": string,
    "end": string,
    "interval": string
  }
}
Fields
field

string

Required. The name of the column to partition the table on. It must be a top-level, INT64 column whose mode is NULLABLE or REQUIRED.

range

object

Defines the ranges for range partitioning.

range.start

string

Required. The start of range partitioning, inclusive. This field is an INT64 value represented as a string.

range.end

string

Required. The end of range partitioning, exclusive. This field is an INT64 value represented as a string.

range.interval

string

Required. The width of each interval. This field is an INT64 value represented as a string.

Clustering

Configures table clustering.

JSON representation
{
  "fields": [
    string
  ]
}
Fields
fields[]

string

One or more fields on which data should be clustered. Only top-level, non-repeated, simple-type fields are supported. The ordering of the clustering fields should be prioritized from most to least important for filtering purposes.

Additional information on limitations can be found here: https://cloud.google.com/bigquery/docs/creating-clustered-tables#limitations

PartitioningDefinition

The partitioning information, which includes managed table, external table and metastore partitioned table partition information.

JSON representation
{
  "partitionedColumn": [
    {
      object (PartitionedColumn)
    }
  ]
}
Fields
partitionedColumn[]

object (PartitionedColumn)

Optional. Details about each partitioning column. This field is output only for all partitioning types other than metastore partitioned tables. BigQuery native tables only support 1 partitioning column. Other table types may support 0, 1 or more partitioning columns. For metastore partitioned tables, the order must match the definition order in the Hive Metastore, where it must match the physical layout of the table. For example,

CREATE TABLE a_table(id BIGINT, name STRING) PARTITIONED BY (city STRING, state STRING).

In this case the values must be ['city', 'state'] in that order.

PartitionedColumn

The partitioning column information.

JSON representation
{
  "field": string
}
Fields
field

string

Required. The name of the partition column.

BigQueryAuditMetadata.TableChange

Table metadata change event.

JSON representation
{
  "table": {
    object (BigQueryAuditMetadata.Table)
  },
  "truncated": boolean,
  "reason": enum (BigQueryAuditMetadata.TableChange.Reason),
  "jobName": string,
  "bindingDeltas": [
    {
      object (BindingDelta)
    }
  ],
  "alterTableStats": {
    object (BigQueryAuditMetadata.TableChange.AlterTableStats)
  },
  "replicaTable": {
    object (BigQueryAuditMetadata.Table)
  }
}
Fields
table

object (BigQueryAuditMetadata.Table)

Updated table metadata.

truncated

boolean

True if the table was truncated.

reason

enum (BigQueryAuditMetadata.TableChange.Reason)

Describes how the table metadata was changed.

jobName

string

The URI of the job that changed a table. Present if the reason is JOB or QUERY.

Format: projects/<projectId>/jobs/<jobId>.

bindingDeltas[]

object (BindingDelta)

List of IAM policy deltas.

alterTableStats

object (BigQueryAuditMetadata.TableChange.AlterTableStats)

Statistics for ALTER TABLE sql statement.

replicaTable

object (BigQueryAuditMetadata.Table)

The replica table which the updated table is replicated to.

BigQueryAuditMetadata.TableChange.AlterTableStats

Statistics for ALTER TABLE sql statement.

JSON representation
{
  "addedColumns": integer,
  "droppedColumns": integer,
  "updatedColumns": integer,
  "renamedColumns": integer
}
Fields
addedColumns

integer

Number of columns added during sql execution.

droppedColumns

integer

Number of columns dropped during sql execution.

updatedColumns

integer

Number of columns modified during sql execution. There can be multiple type of modifications like SET OPTION, SET DATA TYPE etc.

renamedColumns

integer

Number of columns renamed during sql execution.

BigQueryAuditMetadata.TableDeletion

Table deletion event.

JSON representation
{
  "reason": enum (BigQueryAuditMetadata.TableDeletion.Reason),
  "jobName": string
}
Fields
reason

enum (BigQueryAuditMetadata.TableDeletion.Reason)

Describes how table was deleted.

jobName

string

The URI of the job that deleted a table. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.TableDataRead

Table data read event.

JSON representation
{
  "fields": [
    string
  ],
  "fieldsTruncated": boolean,
  "policyTags": [
    string
  ],
  "policyTagsTruncated": boolean,
  "reason": enum (BigQueryAuditMetadata.TableDataRead.Reason),
  "jobName": string,
  "sessionName": string,
  "readStream": string,
  "offset": string,
  "rowCount": string,
  "fraction": number,
  "primaryStream": string,
  "remainderStream": string,
  "writeStream": string
}
Fields
fields[]

string

List of the accessed fields. Entire list is truncated if the record size exceeds 100K.

fieldsTruncated

boolean

True if the fields list was truncated.

policyTags[]

string

List of the referenced policy tags. That is, policy tags attached to the accessed fields or their ancestors. Policy tag resource name is a string of the format: projects/<projectId>/locations/<locationId>/taxonomies/<taxonomyId>/policyTags/<policy_tag_id>

policyTagsTruncated

boolean

True if the policy tag list was truncated. At most 100 policy tags can be saved.

reason

enum (BigQueryAuditMetadata.TableDataRead.Reason)

Describes how the table data was read.

jobName

string

The URI of the job that read a table. Present if the reason is JOB but can be reducted for privacy reasons.

Format: projects/<projectId>/jobs/<jobId>.

sessionName

string

The URI of the read session that read a table. Present if the reason is CREATE_READ_SESSION.

Format: projects/<projectId>/locations/<location>/sessions/<session_id>.

readStream

string

The name of the read stream that is being read OR split. Present if the reason is READ_ROWS or SPLIT_READ_STREAM. This will be of the form projects/{projectId}/locations/{location}/sessions/{session_id}/streams/{stream_id}.

offset

string (int64 format)

The offset requested in a READ_ROWS call.

rowCount

string (int64 format)

Number of serialized rows in the rows block. Present if the reason is READ_ROWS.

fraction

number

A value in the range (0.0, 1.0) that specifies the fractional point at which the original stream should be split. Present iff the reason is SPLIT_READ_STREAM.

primaryStream

string

Primary stream name, which contains the beginning portion of |readStream|. An empty value indicates that the original stream can no longer be split. Present iff the reason is SPLIT_READ_STREAM.

remainderStream

string

Remainder stream name, which contains the tail of |readStream|. An empty value indicates that the original stream can no longer be split. Present iff the reason is SPLIT_READ_STREAM.

writeStream

string

The name of the write stream that is being used for the table data read. This will be of the form projects/{projectId}/datasets/{datasetId}/tables/{tableName}/streams/_default if it's a default write stream or in the form of projects/{projectId}/datasets/{datasetId}/tables/{tableName}/streams/{streamId} if it's an exclusive write stream.

BigQueryAuditMetadata.TableDataChange

Table data change event.

JSON representation
{
  "deletedRowsCount": string,
  "insertedRowsCount": string,
  "truncated": boolean,
  "reason": enum (BigQueryAuditMetadata.TableDataChange.Reason),
  "jobName": string,
  "streamName": string,
  "batchCommitStreamNames": [
    string
  ]
}
Fields
deletedRowsCount

string (int64 format)

Number of deleted rows.

insertedRowsCount

string (int64 format)

Number of inserted rows.

truncated

boolean

True if the table was truncated.

reason

enum (BigQueryAuditMetadata.TableDataChange.Reason)

Describes how the table data was changed.

jobName

string

The URI of the job that changed a table.

Format: projects/<projectId>/jobs/<jobId>.

streamName

string

If written from WRITE_API, the name of the stream.

Format: projects/<projectId>/datasets/<datasetId>/tables/<tableId>/streams/<stream_id>

batchCommitStreamNames[]

string

During batch commits, multiple stream names would be involved.

Format: projects/<projectId>/datasets/<datasetId>/tables/<tableId>/streams/<stream_id>

BigQueryAuditMetadata.ModelDeletion

Model deletion event.

JSON representation
{
  "reason": enum (BigQueryAuditMetadata.ModelDeletion.Reason),
  "jobName": string
}
Fields
reason

enum (BigQueryAuditMetadata.ModelDeletion.Reason)

Describes how the model was deleted.

jobName

string

The URI of the job that deleted a model. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.ModelCreation

Model creation event.

JSON representation
{
  "model": {
    object (BigQueryAuditMetadata.Model)
  },
  "reason": enum (BigQueryAuditMetadata.ModelCreation.Reason),
  "jobName": string
}
Fields
model

object (BigQueryAuditMetadata.Model)

Model metadata.

reason

enum (BigQueryAuditMetadata.ModelCreation.Reason)

Describes how the model was created.

jobName

string

The URI of the job that created the model.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.Model

Trained BigQuery ML model.

JSON representation
{
  "modelName": string,
  "modelInfo": {
    object (BigQueryAuditMetadata.EntityInfo)
  },
  "expireTime": string,
  "createTime": string,
  "updateTime": string,
  "encryption": {
    object (BigQueryAuditMetadata.EncryptionInfo)
  }
}
Fields
modelName

string

Model URI.

Format: projects/<projectId>/datasets/<datasetId>/models/<model_id>.

modelInfo

object (BigQueryAuditMetadata.EntityInfo)

User-provided metadata for the model.

expireTime

string (Timestamp format)

Model expiration time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

createTime

string (Timestamp format)

Model creation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

updateTime

string (Timestamp format)

Model last update time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

encryption

object (BigQueryAuditMetadata.EncryptionInfo)

Model encryption information. Set when non-default encryption is used.

BigQueryAuditMetadata.ModelMetadataChange

Model metadata change event.

JSON representation
{
  "model": {
    object (BigQueryAuditMetadata.Model)
  },
  "reason": enum (BigQueryAuditMetadata.ModelMetadataChange.Reason),
  "jobName": string
}
Fields
model

object (BigQueryAuditMetadata.Model)

Updated model.

reason

enum (BigQueryAuditMetadata.ModelMetadataChange.Reason)

Describes how the model metadata was changed.

jobName

string

The URI of the job that changed the model metadata. Present if and only if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.ModelDataChange

Model data change event.

JSON representation
{
  "reason": enum (BigQueryAuditMetadata.ModelDataChange.Reason),
  "jobName": string
}
Fields
reason

enum (BigQueryAuditMetadata.ModelDataChange.Reason)

Describes how the model data was changed.

jobName

string

The URI of the job that changed the model data.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.ModelDataRead

Model data read event.

JSON representation
{
  "reason": enum (BigQueryAuditMetadata.ModelDataRead.Reason),
  "jobName": string
}
Fields
reason

enum (BigQueryAuditMetadata.ModelDataRead.Reason)

Describes how the model data was read.

jobName

string

The URI of the job that read the model data.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.RoutineCreation

Routine creation event.

JSON representation
{
  "routine": {
    object (BigQueryAuditMetadata.Routine)
  },
  "reason": enum (BigQueryAuditMetadata.RoutineCreation.Reason),
  "jobName": string
}
Fields
routine

object (BigQueryAuditMetadata.Routine)

Created routine.

reason

enum (BigQueryAuditMetadata.RoutineCreation.Reason)

Describes how the routine was created.

jobName

string

The URI of the job that created the routine.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.Routine

User Defined Function (UDF) or Stored Procedure.

JSON representation
{
  "routineName": string,
  "createTime": string,
  "updateTime": string
}
Fields
routineName

string

Routine URI.

Format: projects/<projectId>/datasets/<datasetId>/routines/<routineId>.

createTime

string (Timestamp format)

Routine creation time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

updateTime

string (Timestamp format)

Routine last update time.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

BigQueryAuditMetadata.RoutineChange

Routine change event.

JSON representation
{
  "routine": {
    object (BigQueryAuditMetadata.Routine)
  },
  "reason": enum (BigQueryAuditMetadata.RoutineChange.Reason),
  "jobName": string
}
Fields
routine

object (BigQueryAuditMetadata.Routine)

Updated routine.

reason

enum (BigQueryAuditMetadata.RoutineChange.Reason)

Describes how the routine was updated.

jobName

string

The URI of the job that updated the routine.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.RoutineDeletion

Routine deletion event.

JSON representation
{
  "routine": {
    object (BigQueryAuditMetadata.Routine)
  },
  "reason": enum (BigQueryAuditMetadata.RoutineDeletion.Reason),
  "jobName": string
}
Fields
routine

object (BigQueryAuditMetadata.Routine)

Deleted routine.

reason

enum (BigQueryAuditMetadata.RoutineDeletion.Reason)

Describes how the routine was deleted.

jobName

string

The URI of the job that deleted the routine. Present if the reason is QUERY.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.RowAccessPolicyCreation

Row access policy creation event.

JSON representation
{
  "rowAccessPolicy": {
    object (BigQueryAuditMetadata.RowAccessPolicy)
  },
  "jobName": string
}
Fields
rowAccessPolicy

object (BigQueryAuditMetadata.RowAccessPolicy)

The row access policy created by this event.

jobName

string

The URI of the job that created this row access policy.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.RowAccessPolicy

BigQuery row access policy.

JSON representation
{
  "rowAccessPolicyName": string
}
Fields
rowAccessPolicyName

string

Row access policy URI.

Format: projects/<projectId>/datasets/<datasetId>/tables/<tableId>/rowAccessPolicies/<row_access_policy_id>

BigQueryAuditMetadata.RowAccessPolicyChange

Row access policy change event.

JSON representation
{
  "rowAccessPolicy": {
    object (BigQueryAuditMetadata.RowAccessPolicy)
  },
  "jobName": string
}
Fields
rowAccessPolicy

object (BigQueryAuditMetadata.RowAccessPolicy)

The row access policy that was changed by this event.

jobName

string

The URI of the job that created this row access policy.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.RowAccessPolicyDeletion

Row access policy deletion event.

JSON representation
{
  "rowAccessPolicies": [
    {
      object (BigQueryAuditMetadata.RowAccessPolicy)
    }
  ],
  "jobName": string,
  "allRowAccessPoliciesDropped": boolean
}
Fields
rowAccessPolicies[]

object (BigQueryAuditMetadata.RowAccessPolicy)

The row access policies that were deleted. At present, only populated when a single policy is dropped.

jobName

string

The job that deleted these row access policies.

Format: projects/<projectId>/jobs/<jobId>.

allRowAccessPoliciesDropped

boolean

This field is set to true when a DROP ALL command has been executed, thus removing all row access policies on the table.

BigQueryAuditMetadata.UnlinkDataset

Unlink linked dataset from its source dataset event

JSON representation
{
  "linkedDataset": string,
  "sourceDataset": string,
  "reason": enum (BigQueryAuditMetadata.UnlinkDataset.Reason)
}
Fields
linkedDataset

string

The linked dataset URI which is unlinked from its source.

Format: projects/<projectId>/datasets/<datasetId>.

sourceDataset

string

The source dataset URI from which the linked dataset is unlinked.

Format: projects/<projectId>/datasets/<datasetId>.

reason

enum (BigQueryAuditMetadata.UnlinkDataset.Reason)

Reason for unlinking linked dataset

BigQueryAuditMetadata.SearchIndexCreation

Search index creation event.

JSON representation
{
  "searchIndex": {
    object (BigQueryAuditMetadata.SearchIndex)
  },
  "reason": enum (BigQueryAuditMetadata.SearchIndexCreation.Reason),
  "jobName": string
}
Fields
searchIndex

object (BigQueryAuditMetadata.SearchIndex)

Search index metadata.

reason

enum (BigQueryAuditMetadata.SearchIndexCreation.Reason)

Describes how the search index was created.

jobName

string

The URI of the job that created the search index.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.SearchIndex

BigQuery Search Index.

JSON representation
{
  "searchIndexName": string
}
Fields
searchIndexName

string

Search index URI.

Format: projects/<projectId>/datasets/<datasetId>/tables/<tableId>/searchIndexes/<index_name>.

BigQueryAuditMetadata.SearchIndexDeletion

Search index deletion event.

JSON representation
{
  "searchIndex": {
    object (BigQueryAuditMetadata.SearchIndex)
  },
  "reason": enum (BigQueryAuditMetadata.SearchIndexDeletion.Reason),
  "jobName": string
}
Fields
searchIndex

object (BigQueryAuditMetadata.SearchIndex)

Search index metadata.

reason

enum (BigQueryAuditMetadata.SearchIndexDeletion.Reason)

Describes how the search index was deleted.

jobName

string

The URI of the job that deleted the search index.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.VectorIndexCreation

Vector index creation event.

JSON representation
{
  "vectorIndex": {
    object (BigQueryAuditMetadata.VectorIndex)
  },
  "reason": enum (BigQueryAuditMetadata.VectorIndexCreation.Reason),
  "jobName": string
}
Fields
vectorIndex

object (BigQueryAuditMetadata.VectorIndex)

Vector index metadata.

reason

enum (BigQueryAuditMetadata.VectorIndexCreation.Reason)

Describes how the vector index was created.

jobName

string

The URI of the job that created the vector index.

Format: projects/<projectId>/jobs/<jobId>.

BigQueryAuditMetadata.VectorIndex