Cloud Asset V1 API - Class Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule (v1.2.0)

Reference documentation and code samples for the Cloud Asset V1 API class Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule.

This rule message is a customized version of the one defined in the Organization Policy system. In addition to the fields defined in the original organization policy, it contains additional field(s) under specific circumstances to support analysis results.

Inherits

Object

Extended By

Google::Protobuf::MessageExts::ClassMethods

Includes

Google::Protobuf::MessageExts

Methods

#allow_all

def allow_all() -> ::Boolean

Returns

(::Boolean) — Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: allow_all, values, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

#allow_all=

def allow_all=(value) -> ::Boolean

Parameter

value (::Boolean) — Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: allow_all, values, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns

(::Boolean) — Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: allow_all, values, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

#condition

def condition() -> ::Google::Type::Expr

Returns

(::Google::Type::Expr) — The evaluating condition for this rule.

#condition=

def condition=(value) -> ::Google::Type::Expr

Parameter

value (::Google::Type::Expr) — The evaluating condition for this rule.

Returns

(::Google::Type::Expr) — The evaluating condition for this rule.

#condition_evaluation

def condition_evaluation() -> ::Google::Cloud::Asset::V1::ConditionEvaluation

Returns

(::Google::Cloud::Asset::V1::ConditionEvaluation) —
The condition evaluation result for this rule. Only populated if it meets all the following criteria:
- There is a condition defined for this rule.
- This rule is within AnalyzeOrgPolicyGovernedContainersResponse.GovernedContainer.consolidated_policy, or AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.consolidated_policy when the AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset has AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.governed_resource.

#condition_evaluation=

def condition_evaluation=(value) -> ::Google::Cloud::Asset::V1::ConditionEvaluation

Parameter

value (::Google::Cloud::Asset::V1::ConditionEvaluation) —
The condition evaluation result for this rule. Only populated if it meets all the following criteria:
- There is a condition defined for this rule.
- This rule is within AnalyzeOrgPolicyGovernedContainersResponse.GovernedContainer.consolidated_policy, or AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.consolidated_policy when the AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset has AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.governed_resource.

Returns

(::Google::Cloud::Asset::V1::ConditionEvaluation) —
The condition evaluation result for this rule. Only populated if it meets all the following criteria:
- There is a condition defined for this rule.
- This rule is within AnalyzeOrgPolicyGovernedContainersResponse.GovernedContainer.consolidated_policy, or AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.consolidated_policy when the AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset has AnalyzeOrgPolicyGovernedAssetsResponse.GovernedAsset.governed_resource.

#deny_all

def deny_all() -> ::Boolean

Returns

(::Boolean) — Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: deny_all, values, allow_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

#deny_all=

def deny_all=(value) -> ::Boolean

Parameter

value (::Boolean) — Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: deny_all, values, allow_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns

(::Boolean) — Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.

Note: The following fields are mutually exclusive: deny_all, values, allow_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

#enforce

def enforce() -> ::Boolean

Returns

(::Boolean) — If true, then the Policy is enforced. If false, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.

Note: The following fields are mutually exclusive: enforce, values, allow_all, deny_all. If a field in that set is populated, all other fields in the set will automatically be cleared.

#enforce=

def enforce=(value) -> ::Boolean

Parameter

value (::Boolean) — If true, then the Policy is enforced. If false, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.

Note: The following fields are mutually exclusive: enforce, values, allow_all, deny_all. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns

(::Boolean) — If true, then the Policy is enforced. If false, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.

Note: The following fields are mutually exclusive: enforce, values, allow_all, deny_all. If a field in that set is populated, all other fields in the set will automatically be cleared.

#values

def values() -> ::Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule::StringValues

Returns

(::Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule::StringValues) — List of values to be used for this policy rule. This field can be set only in policies for list constraints.

Note: The following fields are mutually exclusive: values, allow_all, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

#values=

def values=(value) -> ::Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule::StringValues

Parameter

value (::Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule::StringValues) — List of values to be used for this policy rule. This field can be set only in policies for list constraints.

Note: The following fields are mutually exclusive: values, allow_all, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns

(::Google::Cloud::Asset::V1::AnalyzerOrgPolicy::Rule::StringValues) — List of values to be used for this policy rule. This field can be set only in policies for list constraints.

Note: The following fields are mutually exclusive: values, allow_all, deny_all, enforce. If a field in that set is populated, all other fields in the set will automatically be cleared.