Cloud Security Command Center V1 API - Class Google::Cloud::SecurityCenter::V1::Access (v1.1.0)

Reference documentation and code samples for the Cloud Security Command Center V1 API class Google::Cloud::SecurityCenter::V1::Access.

Represents an access event.

Inherits

Object

Extended By

Google::Protobuf::MessageExts::ClassMethods

Includes

Google::Protobuf::MessageExts

Methods

#caller_ip

def caller_ip() -> ::String

Returns

(::String) — Caller's IP address, such as "1.1.1.1".

#caller_ip=

def caller_ip=(value) -> ::String

Parameter

value (::String) — Caller's IP address, such as "1.1.1.1".

Returns

(::String) — Caller's IP address, such as "1.1.1.1".

#caller_ip_geo

def caller_ip_geo() -> ::Google::Cloud::SecurityCenter::V1::Geolocation

Returns

(::Google::Cloud::SecurityCenter::V1::Geolocation) — The caller IP's geolocation, which identifies where the call came from.

#caller_ip_geo=

def caller_ip_geo=(value) -> ::Google::Cloud::SecurityCenter::V1::Geolocation

Parameter

value (::Google::Cloud::SecurityCenter::V1::Geolocation) — The caller IP's geolocation, which identifies where the call came from.

Returns

(::Google::Cloud::SecurityCenter::V1::Geolocation) — The caller IP's geolocation, which identifies where the call came from.

#method_name

def method_name() -> ::String

Returns

(::String) — The method that the service account called, e.g. "SetIamPolicy".

#method_name=

def method_name=(value) -> ::String

Parameter

value (::String) — The method that the service account called, e.g. "SetIamPolicy".

Returns

(::String) — The method that the service account called, e.g. "SetIamPolicy".

#principal_email

def principal_email() -> ::String

Returns

(::String) — Associated email, such as "foo@google.com".

The email address of the authenticated user or a service account acting on behalf of a third party principal making the request. For third party identity callers, the principal_subject field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see Caller identities in audit logs.

#principal_email=

def principal_email=(value) -> ::String

Parameter

value (::String) — Associated email, such as "foo@google.com".

The email address of the authenticated user or a service account acting on behalf of a third party principal making the request. For third party identity callers, the principal_subject field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see Caller identities in audit logs.

Returns

(::String) — Associated email, such as "foo@google.com".

The email address of the authenticated user or a service account acting on behalf of a third party principal making the request. For third party identity callers, the principal_subject field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see Caller identities in audit logs.

#principal_subject

def principal_subject() -> ::String

Returns

(::String) — A string that represents the principal_subject that is associated with the identity. Unlike principal_email, principal_subject supports principals that aren't associated with email addresses, such as third party principals. For most identities, the format is principal://iam.googleapis.com/{identity pool name}/subject/{subject}. Some GKE identities, such as GKE_WORKLOAD, FREEFORM, and GKE_HUB_WORKLOAD, still use the legacy format serviceAccount:{identity pool name}[\\{subject}].

#principal_subject=

def principal_subject=(value) -> ::String

Parameter

value (::String) — A string that represents the principal_subject that is associated with the identity. Unlike principal_email, principal_subject supports principals that aren't associated with email addresses, such as third party principals. For most identities, the format is principal://iam.googleapis.com/{identity pool name}/subject/{subject}. Some GKE identities, such as GKE_WORKLOAD, FREEFORM, and GKE_HUB_WORKLOAD, still use the legacy format serviceAccount:{identity pool name}[\\{subject}].

Returns

(::String) — A string that represents the principal_subject that is associated with the identity. Unlike principal_email, principal_subject supports principals that aren't associated with email addresses, such as third party principals. For most identities, the format is principal://iam.googleapis.com/{identity pool name}/subject/{subject}. Some GKE identities, such as GKE_WORKLOAD, FREEFORM, and GKE_HUB_WORKLOAD, still use the legacy format serviceAccount:{identity pool name}[\\{subject}].

#service_account_delegation_info

def service_account_delegation_info() -> ::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>

Returns

(::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>) — The identity delegation history of an authenticated service account that made the request. The serviceAccountDelegationInfo[] object contains information about the real authorities that try to access Google Cloud resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.

#service_account_delegation_info=

def service_account_delegation_info=(value) -> ::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>

Parameter

value (::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>) — The identity delegation history of an authenticated service account that made the request. The serviceAccountDelegationInfo[] object contains information about the real authorities that try to access Google Cloud resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.

Returns

(::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>) — The identity delegation history of an authenticated service account that made the request. The serviceAccountDelegationInfo[] object contains information about the real authorities that try to access Google Cloud resources by delegating on a service account. When multiple authorities are present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.

#service_account_key_name

def service_account_key_name() -> ::String

Returns

(::String) — The name of the service account key that was used to create or exchange credentials when authenticating the service account that made the request. This is a scheme-less URI full resource name. For example:

"//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}".

#service_account_key_name=

def service_account_key_name=(value) -> ::String

Parameter

value (::String) — The name of the service account key that was used to create or exchange credentials when authenticating the service account that made the request. This is a scheme-less URI full resource name. For example:

"//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}".

Returns

(::String) — The name of the service account key that was used to create or exchange credentials when authenticating the service account that made the request. This is a scheme-less URI full resource name. For example:

"//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}".

#service_name

def service_name() -> ::String

Returns

(::String) — This is the API service that the service account made a call to, e.g. "iam.googleapis.com"

#service_name=

def service_name=(value) -> ::String

Parameter

value (::String) — This is the API service that the service account made a call to, e.g. "iam.googleapis.com"

Returns

(::String) — This is the API service that the service account made a call to, e.g. "iam.googleapis.com"

#user_agent

def user_agent() -> ::String

Returns

(::String) — The caller's user agent string associated with the finding.

#user_agent=

def user_agent=(value) -> ::String

Parameter

value (::String) — The caller's user agent string associated with the finding.

Returns

(::String) — The caller's user agent string associated with the finding.

#user_agent_family

def user_agent_family() -> ::String

Returns

(::String) — Type of user agent associated with the finding. For example, an operating system shell or an embedded or standalone application.

#user_agent_family=

def user_agent_family=(value) -> ::String

Parameter

value (::String) — Type of user agent associated with the finding. For example, an operating system shell or an embedded or standalone application.

Returns

(::String) — Type of user agent associated with the finding. For example, an operating system shell or an embedded or standalone application.

#user_name

def user_name() -> ::String

Returns

(::String) — A string that represents a username. The username provided depends on the type of the finding and is likely not an IAM principal. For example, this can be a system username if the finding is related to a virtual machine, or it can be an application login username.

#user_name=

def user_name=(value) -> ::String

Parameter

value (::String) — A string that represents a username. The username provided depends on the type of the finding and is likely not an IAM principal. For example, this can be a system username if the finding is related to a virtual machine, or it can be an application login username.

Returns

(::String) — A string that represents a username. The username provided depends on the type of the finding and is likely not an IAM principal. For example, this can be a system username if the finding is related to a virtual machine, or it can be an application login username.