Reference documentation and code samples for the Privileged Access Manager V1 API class Google::Cloud::PrivilegedAccessManager::V1::Entitlement.
An entitlement defines the eligibility of a set of users to obtain predefined access for some time possibly after going through an approval workflow.
Inherits
- Object
Extended By
- Google::Protobuf::MessageExts::ClassMethods
Includes
- Google::Protobuf::MessageExts
Methods
#additional_notification_targets
def additional_notification_targets() -> ::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::AdditionalNotificationTargets
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::AdditionalNotificationTargets) — Optional. Additional email addresses to be notified based on actions taken.
#additional_notification_targets=
def additional_notification_targets=(value) -> ::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::AdditionalNotificationTargets
Parameter
- value (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::AdditionalNotificationTargets) — Optional. Additional email addresses to be notified based on actions taken.
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::AdditionalNotificationTargets) — Optional. Additional email addresses to be notified based on actions taken.
#approval_workflow
def approval_workflow() -> ::Google::Cloud::PrivilegedAccessManager::V1::ApprovalWorkflow
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::ApprovalWorkflow) — Optional. The approvals needed before access are granted to a requester. No approvals are needed if this field is null.
#approval_workflow=
def approval_workflow=(value) -> ::Google::Cloud::PrivilegedAccessManager::V1::ApprovalWorkflow
Parameter
- value (::Google::Cloud::PrivilegedAccessManager::V1::ApprovalWorkflow) — Optional. The approvals needed before access are granted to a requester. No approvals are needed if this field is null.
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::ApprovalWorkflow) — Optional. The approvals needed before access are granted to a requester. No approvals are needed if this field is null.
#create_time
def create_time() -> ::Google::Protobuf::Timestamp
Returns
- (::Google::Protobuf::Timestamp) — Output only. Create time stamp.
#eligible_users
def eligible_users() -> ::Array<::Google::Cloud::PrivilegedAccessManager::V1::AccessControlEntry>
Returns
- (::Array<::Google::Cloud::PrivilegedAccessManager::V1::AccessControlEntry>) — Optional. Who can create grants using this entitlement. This list should contain at most one entry.
#eligible_users=
def eligible_users=(value) -> ::Array<::Google::Cloud::PrivilegedAccessManager::V1::AccessControlEntry>
Parameter
- value (::Array<::Google::Cloud::PrivilegedAccessManager::V1::AccessControlEntry>) — Optional. Who can create grants using this entitlement. This list should contain at most one entry.
Returns
- (::Array<::Google::Cloud::PrivilegedAccessManager::V1::AccessControlEntry>) — Optional. Who can create grants using this entitlement. This list should contain at most one entry.
#etag
def etag() -> ::String
Returns
-
(::String) — An
etagis used for optimistic concurrency control as a way to prevent simultaneous updates to the same entitlement. Anetagis returned in the response toGetEntitlementand the caller should put theetagin the request toUpdateEntitlementso that their change is applied on the same version. If this field is omitted or if there is a mismatch while updating an entitlement, then the server rejects the request.
#etag=
def etag=(value) -> ::String
Parameter
-
value (::String) — An
etagis used for optimistic concurrency control as a way to prevent simultaneous updates to the same entitlement. Anetagis returned in the response toGetEntitlementand the caller should put theetagin the request toUpdateEntitlementso that their change is applied on the same version. If this field is omitted or if there is a mismatch while updating an entitlement, then the server rejects the request.
Returns
-
(::String) — An
etagis used for optimistic concurrency control as a way to prevent simultaneous updates to the same entitlement. Anetagis returned in the response toGetEntitlementand the caller should put theetagin the request toUpdateEntitlementso that their change is applied on the same version. If this field is omitted or if there is a mismatch while updating an entitlement, then the server rejects the request.
#max_request_duration
def max_request_duration() -> ::Google::Protobuf::Duration
Returns
- (::Google::Protobuf::Duration) — Required. The maximum amount of time that access is granted for a request. A requester can ask for a duration less than this, but never more.
#max_request_duration=
def max_request_duration=(value) -> ::Google::Protobuf::Duration
Parameter
- value (::Google::Protobuf::Duration) — Required. The maximum amount of time that access is granted for a request. A requester can ask for a duration less than this, but never more.
Returns
- (::Google::Protobuf::Duration) — Required. The maximum amount of time that access is granted for a request. A requester can ask for a duration less than this, but never more.
#name
def name() -> ::String
Returns
-
(::String) —
Identifier. Name of the entitlement. Possible formats:
organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}
#name=
def name=(value) -> ::String
Parameter
-
value (::String) —
Identifier. Name of the entitlement. Possible formats:
organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}
Returns
-
(::String) —
Identifier. Name of the entitlement. Possible formats:
organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}
#privileged_access
def privileged_access() -> ::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess) — The access granted to a requester on successful approval.
#privileged_access=
def privileged_access=(value) -> ::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess
Parameter
- value (::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess) — The access granted to a requester on successful approval.
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess) — The access granted to a requester on successful approval.
#requester_justification_config
def requester_justification_config() -> ::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::RequesterJustificationConfig
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::RequesterJustificationConfig) — Required. The manner in which the requester should provide a justification for requesting access.
#requester_justification_config=
def requester_justification_config=(value) -> ::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::RequesterJustificationConfig
Parameter
- value (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::RequesterJustificationConfig) — Required. The manner in which the requester should provide a justification for requesting access.
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::RequesterJustificationConfig) — Required. The manner in which the requester should provide a justification for requesting access.
#state
def state() -> ::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::State
Returns
- (::Google::Cloud::PrivilegedAccessManager::V1::Entitlement::State) — Output only. Current state of this entitlement.
#update_time
def update_time() -> ::Google::Protobuf::Timestamp
Returns
- (::Google::Protobuf::Timestamp) — Output only. Update time stamp.