Class: Google::Apis::IapV1::AccessSettings

Inherits:

Object

• Object
• Google::Apis::IapV1::AccessSettings

Includes:

Core::Hashable, Core::JsonObjectSupport

Defined in:

lib/google/apis/iap_v1/classes.rb,
lib/google/apis/iap_v1/representations.rb,
lib/google/apis/iap_v1/representations.rb

Overview

Access related settings for IAP protected apps.

Instance Attribute Summary

• #allowed_domains_settings ⇒ Google::Apis::IapV1::AllowedDomainsSettings

  Configuration for IAP allowed domains.

• #cors_settings ⇒ Google::Apis::IapV1::CorsSettings

  Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS call to bypass authentication and authorization.

• #gcip_settings ⇒ Google::Apis::IapV1::GcipSettings

  Allows customers to configure tenant_id for GCIP instance per-app.

• #identity_sources ⇒ Array<String>

  Optional.

• #oauth_settings ⇒ Google::Apis::IapV1::OAuthSettings

  Configuration for OAuth login&consent flow behavior as well as for OAuth Credentials.

• #policy_delegation_settings ⇒ Google::Apis::IapV1::PolicyDelegationSettings

  PolicyDelegationConfig allows google-internal teams to use IAP for apps hosted in a tenant project.

• #reauth_settings ⇒ Google::Apis::IapV1::ReauthSettings

  Configuration for IAP reauthentication policies.

• #workforce_identity_settings ⇒ Google::Apis::IapV1::WorkforceIdentitySettings

  WorkforceIdentitySettings allows customers to configure workforce pools and OAuth 2.0 settings to gate their applications using a third-party IdP with access control.

Instance Method Summary

• #initialize(**args) ⇒ AccessSettings constructor

  A new instance of AccessSettings.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ AccessSettings

Returns a new instance of AccessSettings.

# File 'lib/google/apis/iap_v1/classes.rb', line 117

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#allowed_domains_settings ⇒ Google::Apis::IapV1::AllowedDomainsSettings

Configuration for IAP allowed domains. Lets you to restrict access to an app and allow access to only the domains that you list. Corresponds to the JSON property allowedDomainsSettings

Returns:

• (Google::Apis::IapV1::AllowedDomainsSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 71

def allowed_domains_settings
  @allowed_domains_settings
end

#cors_settings ⇒ Google::Apis::IapV1::CorsSettings

Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS call to bypass authentication and authorization. Corresponds to the JSON property corsSettings

Returns:

• (Google::Apis::IapV1::CorsSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 77

def cors_settings
  @cors_settings
end

#gcip_settings ⇒ Google::Apis::IapV1::GcipSettings

Allows customers to configure tenant_id for GCIP instance per-app. Corresponds to the JSON property gcipSettings

Returns:

• (Google::Apis::IapV1::GcipSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 82

def gcip_settings
  @gcip_settings
end

#identity_sources ⇒ Array<String>

Optional. Identity sources that IAP can use to authenticate the end user. Only one identity source can be configured. Corresponds to the JSON property identitySources

Returns:

• (Array<String>)

# File 'lib/google/apis/iap_v1/classes.rb', line 88

def identity_sources
  @identity_sources
end

#oauth_settings ⇒ Google::Apis::IapV1::OAuthSettings

Configuration for OAuth login&consent flow behavior as well as for OAuth Credentials. Corresponds to the JSON property oauthSettings

Returns:

• (Google::Apis::IapV1::OAuthSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 94

def oauth_settings
  @oauth_settings
end

#policy_delegation_settings ⇒ Google::Apis::IapV1::PolicyDelegationSettings

PolicyDelegationConfig allows google-internal teams to use IAP for apps hosted in a tenant project. Using these settings, the app can delegate permission check to happen against the linked customer project. This is only ever supposed to be used by google internal teams, hence the restriction on the proto. Corresponds to the JSON property policyDelegationSettings

Returns:

• (Google::Apis::IapV1::PolicyDelegationSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 103

def policy_delegation_settings
  @policy_delegation_settings
end

#reauth_settings ⇒ Google::Apis::IapV1::ReauthSettings

Configuration for IAP reauthentication policies. Corresponds to the JSON property reauthSettings

Returns:

• (Google::Apis::IapV1::ReauthSettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 108

def reauth_settings
  @reauth_settings
end

#workforce_identity_settings ⇒ Google::Apis::IapV1::WorkforceIdentitySettings

WorkforceIdentitySettings allows customers to configure workforce pools and OAuth 2.0 settings to gate their applications using a third-party IdP with access control. Corresponds to the JSON property workforceIdentitySettings

Returns:

• (Google::Apis::IapV1::WorkforceIdentitySettings)

# File 'lib/google/apis/iap_v1/classes.rb', line 115

def workforce_identity_settings
  @workforce_identity_settings
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'lib/google/apis/iap_v1/classes.rb', line 122

def update!(**args)
  @allowed_domains_settings = args[:allowed_domains_settings] if args.key?(:allowed_domains_settings)
  @cors_settings = args[:cors_settings] if args.key?(:cors_settings)
  @gcip_settings = args[:gcip_settings] if args.key?(:gcip_settings)
  @identity_sources = args[:identity_sources] if args.key?(:identity_sources)
  @oauth_settings = args[:oauth_settings] if args.key?(:oauth_settings)
  @policy_delegation_settings = args[:policy_delegation_settings] if args.key?(:policy_delegation_settings)
  @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
  @workforce_identity_settings = args[:workforce_identity_settings] if args.key?(:workforce_identity_settings)
end