Reference documentation and code samples for the Access Context Manager V1 API class Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressPolicy.
Policy for ingress into [ServicePerimeter] [google.identity.accesscontextmanager.v1.ServicePerimeter].
[IngressPolicies]
[google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy]
match requests based on ingress_from and ingress_to stanzas. For an
ingress policy to match, both the ingress_from and ingress_to stanzas
must be matched. If an [IngressPolicy]
[google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy]
matches a request, the request is allowed through the perimeter boundary
from outside the perimeter.
For example, access from the internet can be allowed either based on an [AccessLevel] [google.identity.accesscontextmanager.v1.AccessLevel] or, for traffic hosted on Google Cloud, the project of the source network. For access from private networks, using the project of the hosting network is required.
Individual ingress policies can be limited by restricting which
services and/or actions they match using the ingress_to field.
Inherits
- Object
Extended By
- Google::Protobuf::MessageExts::ClassMethods
Includes
- Google::Protobuf::MessageExts
Methods
#ingress_from
def ingress_from() -> ::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressFrom- (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressFrom) — Defines the conditions on the source of a request causing this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.
#ingress_from=
def ingress_from=(value) -> ::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressFrom- value (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressFrom) — Defines the conditions on the source of a request causing this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.
- (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressFrom) — Defines the conditions on the source of a request causing this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.
#ingress_to
def ingress_to() -> ::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressTo- (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressTo) — Defines the conditions on the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] and request destination that cause this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.
#ingress_to=
def ingress_to=(value) -> ::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressTo- value (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressTo) — Defines the conditions on the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] and request destination that cause this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.
- (::Google::Identity::AccessContextManager::V1::ServicePerimeterConfig::IngressTo) — Defines the conditions on the [ApiOperation] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.ApiOperation] and request destination that cause this [IngressPolicy] [google.identity.accesscontextmanager.v1.ServicePerimeterConfig.IngressPolicy] to apply.