Class: Google::Apis::ServicecontrolV2::AuthenticationInfo

Inherits:

Object

• Object
• Google::Apis::ServicecontrolV2::AuthenticationInfo

Includes:

Core::Hashable, Core::JsonObjectSupport

Defined in:

lib/google/apis/servicecontrol_v2/classes.rb,
lib/google/apis/servicecontrol_v2/representations.rb,
lib/google/apis/servicecontrol_v2/representations.rb

Overview

Authentication information for the operation.

Instance Attribute Summary

• #authority_selector ⇒ String

  The authority selector specified by the requestor, if any.

• #loggable_short_lived_credential ⇒ Hash<String,Object>

  Converted from "identity_cloudgaia.AuditLoggableShortLivedCredential" proto.

• #oauth_info ⇒ Google::Apis::ServicecontrolV2::OAuthInfo

  OAuth related information about the request.

• #principal_email ⇒ String

  The email address of the authenticated user (or service account on behalf of third party principal) making the request.

• #principal_subject ⇒ String

  String representation of identity of requesting party.

• #service_account_delegation_info ⇒ Array<Google::Apis::ServicecontrolV2::ServiceAccountDelegationInfo>

  Identity delegation history of an authenticated service account that makes the request.

• #service_account_key_name ⇒ String

  The name of the service account key used to create or exchange credentials for authenticating the service account making the request.

• #service_delegation_history ⇒ Google::Apis::ServicecontrolV2::ServiceDelegationHistory

  The history of delegation across multiple services as the result of the original user's action.

• #third_party_principal ⇒ Hash<String,Object>

  The third party identification (if any) of the authenticated user making the request.

Instance Method Summary

• #initialize(**args) ⇒ AuthenticationInfo constructor

  A new instance of AuthenticationInfo.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ AuthenticationInfo

Returns a new instance of AuthenticationInfo.

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 437

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#authority_selector ⇒ String

The authority selector specified by the requestor, if any. It is not guaranteed that the principal was allowed to use this authority. Corresponds to the JSON property authoritySelector

Returns:

• (String)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 373

def authority_selector
  @authority_selector
end

#loggable_short_lived_credential ⇒ Hash<String,Object>

Converted from "identity_cloudgaia.AuditLoggableShortLivedCredential" proto. This message will be used by security, detection and response team. For context please refer to go/cg:short-lived-credential-logging. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the @type property. Corresponds to the JSON property loggableShortLivedCredential

Returns:

• (Hash<String,Object>)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 382

def loggable_short_lived_credential
  @loggable_short_lived_credential
end

#oauth_info ⇒ Google::Apis::ServicecontrolV2::OAuthInfo

OAuth related information about the request. Corresponds to the JSON property oauthInfo

Returns:

• (Google::Apis::ServicecontrolV2::OAuthInfo)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 387

def oauth_info
  @oauth_info
end

#principal_email ⇒ String

The email address of the authenticated user (or service account on behalf of third party principal) making the request. For third party identity callers, the principal_subject field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see Caller identities in audit logs. Corresponds to the JSON property principalEmail

Returns:

• (String)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 397

def principal_email
  @principal_email
end

#principal_subject ⇒ String

String representation of identity of requesting party. Populated for both first and third party identities. Corresponds to the JSON property principalSubject

Returns:

• (String)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 403

def principal_subject
  @principal_subject
end

#service_account_delegation_info ⇒ Array<Google::Apis::ServicecontrolV2::ServiceAccountDelegationInfo>

Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events. Corresponds to the JSON property serviceAccountDelegationInfo

Returns:

• (Array<Google::Apis::ServicecontrolV2::ServiceAccountDelegationInfo>)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 412

def service_account_delegation_info
  @service_account_delegation_info
end

#service_account_key_name ⇒ String

The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/ PROJECT_ID/serviceAccounts/ACCOUNT/keys/key" Corresponds to the JSON property serviceAccountKeyName

Returns:

• (String)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 420

def service_account_key_name
  @service_account_key_name
end

#service_delegation_history ⇒ Google::Apis::ServicecontrolV2::ServiceDelegationHistory

The history of delegation across multiple services as the result of the original user's action. Such as "service A uses its own account to do something for user B". This differs from ServiceAccountDelegationInfo, which only tracks the history of direct token exchanges (impersonation). Corresponds to the JSON property serviceDelegationHistory

Returns:

• (Google::Apis::ServicecontrolV2::ServiceDelegationHistory)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 428

def service_delegation_history
  @service_delegation_history
end

#third_party_principal ⇒ Hash<String,Object>

The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the @type property. Corresponds to the JSON property thirdPartyPrincipal

Returns:

• (Hash<String,Object>)

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 435

def third_party_principal
  @third_party_principal
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'lib/google/apis/servicecontrol_v2/classes.rb', line 442

def update!(**args)
  @authority_selector = args[:authority_selector] if args.key?(:authority_selector)
  @loggable_short_lived_credential = args[:loggable_short_lived_credential] if args.key?(:loggable_short_lived_credential)
  @oauth_info = args[:oauth_info] if args.key?(:oauth_info)
  @principal_email = args[:principal_email] if args.key?(:principal_email)
  @principal_subject = args[:principal_subject] if args.key?(:principal_subject)
  @service_account_delegation_info = args[:service_account_delegation_info] if args.key?(:service_account_delegation_info)
  @service_account_key_name = args[:service_account_key_name] if args.key?(:service_account_key_name)
  @service_delegation_history = args[:service_delegation_history] if args.key?(:service_delegation_history)
  @third_party_principal = args[:third_party_principal] if args.key?(:third_party_principal)
end