- Resource: FrameworkAudit
- Methods
Resource: FrameworkAudit
A framework audit.
| JSON representation |
|---|
{ "name": string, "frameworkAuditId": string, "complianceFramework": string, "scope": string, "frameworkAuditDestination": { object ( |
| Fields | |
|---|---|
name |
Output only. Identifier. The name of the framework audit. |
frameworkAuditId |
Output only. The ID of the framework audit. |
complianceFramework |
Output only. The compliance framework used for the audit. |
scope |
Output only. The scope of the audit. |
frameworkAuditDestination |
Required. The destination for the audit reports. |
startTime |
Output only. The time that the audit started. Uses RFC 3339, where generated output will always be Z-normalized and use 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
finishTime |
Output only. The time that the audit finished. Uses RFC 3339, where generated output will always be Z-normalized and use 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
complianceState |
Output only. The overall compliance state of the audit. |
reportSummary |
Output only. The summary of the report. |
cloudControlGroupAuditDetails[] |
Optional. The details for the cloud control groups within this audit. |
cloudControlAuditDetails[] |
Optional. The details for the cloud controls within this audit. |
operationId |
Output only. The ID of the long-running operation. |
state |
Output only. The framework audit state of the audit. |
FrameworkAuditDestination
A destination for the framework audit.
| JSON representation |
|---|
{ // Union field |
| Fields | |
|---|---|
Union field destination_type. The type of destination. destination_type can be only one of the following: |
|
bucket |
The Cloud Storage bucket destination. |
BucketDestination
A Cloud Storage bucket destination.
| JSON representation |
|---|
{
"bucketUri": string,
"frameworkAuditFormat": enum ( |
| Fields | |
|---|---|
bucketUri |
Required. The URI of the Cloud Storage bucket. |
frameworkAuditFormat |
Optional. The format of the framework audit. |
Format
The set of options for the framework audit format.
| Enums | |
|---|---|
FORMAT_UNSPECIFIED |
Default value. This value is unused. |
ODF |
The format for the framework audit report is Open Document. |
ComplianceState
The state of compliance after evaluation is complete.
| Enums | |
|---|---|
COMPLIANCE_STATE_UNSPECIFIED |
Default value. This value is unused. |
COMPLIANT |
The resource is compliant. |
VIOLATION |
The resource has a violation. |
MANUAL_REVIEW_NEEDED |
The resource requires manual review from you. |
ERROR |
An error occurred while computing the resource status. |
AUDIT_NOT_SUPPORTED |
The resource can't be audited. |
ReportSummary
Additional information for an audit operation.
| JSON representation |
|---|
{ "totalCount": integer, "compliantCount": integer, "violationCount": integer, "manualReviewNeededCount": integer, "errorCount": integer } |
| Fields | |
|---|---|
totalCount |
Output only. The total number of checks. |
compliantCount |
Output only. The number of compliant checks. |
violationCount |
Output only. The number of checks with violations. |
manualReviewNeededCount |
Output only. The number of checks with "manual review needed" status. |
errorCount |
Output only. The number of checks that can't be performed due to errors. |
CloudControlGroupAuditDetails
The details for a cloud control group.
| JSON representation |
|---|
{ "cloudControlGroupId": string, "displayName": string, "description": string, "responsibilityType": string, "googleResponsibilityDescription": string, "googleResponsibilityImplementation": string, "customerResponsibilityDescription": string, "customerResponsibilityImplementation": string, "complianceState": enum ( |
| Fields | |
|---|---|
cloudControlGroupId |
Output only. The ID of the cloud control group. |
displayName |
Output only. The display name of the cloud control group. |
description |
Output only. The description of the cloud control group. |
responsibilityType |
Output only. The responsibility type. |
googleResponsibilityDescription |
Output only. The description of Google's responsibility. |
googleResponsibilityImplementation |
Output only. The implementation of Google's responsibility. |
customerResponsibilityDescription |
Output only. The description of your responsibility. |
customerResponsibilityImplementation |
Output only. The implementation of your responsibility. |
complianceState |
Output only. The compliance state of the control group. |
controlId |
Output only. The ID of the regulatory control. |
controlFamily |
Output only. The control family. |
cloudControlDetails[] |
Output only. The details for the cloud controls within this group. |
reportSummary |
Output only. The summary of the report. |
ControlFamily
The regulatory family of the control.
| JSON representation |
|---|
{ "familyId": string, "displayName": string } |
| Fields | |
|---|---|
familyId |
The identifier for the regulatory control family. |
displayName |
The friendly name for the regulatory control family. |
CloudControlAuditDetails
The details for a cloud control audit.
| JSON representation |
|---|
{ "cloudControl": string, "cloudControlId": string, "cloudControlDescription": string, "complianceState": enum ( |
| Fields | |
|---|---|
cloudControl |
Output only. The name of the cloud control. |
cloudControlId |
Output only. The ID of the cloud control. |
cloudControlDescription |
Output only. The description of the cloud control. |
complianceState |
Output only. The overall status of the findings for the control. |
reportSummary |
Output only. The summary of the report. |
findings[] |
Output only. The findings for the control. |
FindingDetails
The details for a finding.
| JSON representation |
|---|
{ "name": string, "complianceState": enum ( |
| Fields | |
|---|---|
name |
Output only. The name of the finding. |
complianceState |
Output only. The compliance state of the finding. |
observation |
Output only. The observation details for the finding. |
evidence |
Output only. The evidence details for the finding. |
ObservationDetails
The observation details for a finding.
| JSON representation |
|---|
{ "currentValue": string, "expectedValue": string, "guidance": string } |
| Fields | |
|---|---|
currentValue |
Output only. The current value. |
expectedValue |
Optional. The expected value. |
guidance |
Output only. Any guidance for the observation. |
EvidenceDetails
The evidence details for a finding.
| JSON representation |
|---|
{ "resource": string, "service": string, "evidencePath": string } |
| Fields | |
|---|---|
resource |
Output only. The resource identifier. |
service |
Output only. The service identifier. |
evidencePath |
Output only. The path to the evidence. |
State
The state of the framework audit.
| Enums | |
|---|---|
STATE_UNSPECIFIED |
Default value. This value is unused. |
SCHEDULED |
The audit is scheduled. |
RUNNING |
The audit is running. |
UPLOADING |
The audit results are being uploaded. |
FAILED |
The audit failed. |
SUCCEEDED |
The audit completed successfully. |
Methods |
|
|---|---|
|
Creates a framework audit. |
|
Gets the details for a framework audit. |
|
Lists the framework audits for a given organization, folder, or project. |