LintResult(mapping=None, *, ignore_unknown_fields=False, **kwargs)
Structured response of a single validation unit.
Attributes | |
---|---|
Name | Description |
level |
google.cloud.iam_admin_v1.types.LintResult.Level
The validation unit level. |
validation_unit_name |
str
The validation unit name, for instance "lintValidationUnits/ConditionComplexityCheck". |
severity |
google.cloud.iam_admin_v1.types.LintResult.Severity
The validation unit severity. |
field_name |
str
The name of the field for which this lint result is about. For nested messages field_name consists of names of the
embedded fields separated by period character. The top-level
qualifier is the input object to lint in the request. For
example, the field_name value condition.expression
identifies a lint result for the expression field of the
provided condition.
|
location_offset |
int
0-based character position of problematic construct within the object identified by field_name . Currently, this is
populated only for condition expression.
|
debug_message |
str
Human readable debug message associated with the issue. |
Classes
Level
Level(value)
Possible Level values of a validation unit corresponding to its domain of discourse.
Values: LEVEL_UNSPECIFIED (0): Level is unspecified. CONDITION (3): A validation unit which operates on an individual condition within a binding.
Severity
Severity(value)
Possible Severity values of an issued result.
Values:
SEVERITY_UNSPECIFIED (0):
Severity is unspecified.
ERROR (1):
A validation unit returns an error only for critical issues.
If an attempt is made to set the problematic policy without
rectifying the critical issue, it causes the setPolicy
operation to fail.
WARNING (2):
Any issue which is severe enough but does not cause an
error. For example, suspicious constructs in the input
object will not necessarily fail setPolicy
, but there is
a high likelihood that they won't behave as expected during
policy evaluation in checkPolicy
. This includes the
following common scenarios:
- Unsatisfiable condition: Expired timestamp in date/time
condition.
- Ineffective condition: Condition on a <principal, role>
pair which is granted unconditionally in another binding
of the same policy.
NOTICE (3):
Reserved for the issues that are not severe as
`ERROR`/`WARNING`, but need special handling. For
instance, messages about skipped validation units are issued
as `NOTICE`.
INFO (4):
Any informative statement which is not severe enough to
raise `ERROR`/`WARNING`/`NOTICE`, like auto-correction
recommendations on the input content. Note that current
version of the linter does not utilize `INFO`.
DEPRECATED (5):
Deprecated severity level.