Class: Google::Cloud::OrgPolicy::V2::OrgPolicy::Client

Inherits:

Object

• Object
• Google::Cloud::OrgPolicy::V2::OrgPolicy::Client

Includes:

Paths

Defined in:

lib/google/cloud/org_policy/v2/org_policy/client.rb

Overview

Client for the OrgPolicy service.

An interface for managing organization policies.

The Organization Policy Service provides a simple mechanism for organizations to restrict the allowed configurations across their entire resource hierarchy.

You can use a policy to configure restrictions on resources. For example, you can enforce a policy that restricts which Google Cloud APIs can be activated in a certain part of your resource hierarchy, or prevents serial port access to VM instances in a particular folder.

Policies are inherited down through the resource hierarchy. A policy applied to a parent resource automatically applies to all its child resources unless overridden with a policy lower in the hierarchy.

A constraint defines an aspect of a resource's configuration that can be controlled by an organization's policy administrator. Policies are a collection of constraints that defines their allowable configuration on a particular resource and its child resources.

Defined Under Namespace

Classes: Configuration

Class Method Summary

• .configure {|config| ... } ⇒ Client::Configuration

  Configure the OrgPolicy Client class.

Instance Method Summary

• #configure {|config| ... } ⇒ Client::Configuration

  Configure the OrgPolicy Client instance.

• #create_custom_constraint(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Creates a custom constraint.

• #create_policy(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Creates a policy.

• #delete_custom_constraint(request, options = nil) {|response, operation| ... } ⇒ ::Google::Protobuf::Empty

  Deletes a custom constraint.

• #delete_policy(request, options = nil) {|response, operation| ... } ⇒ ::Google::Protobuf::Empty

  Deletes a policy.

• #get_custom_constraint(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Gets a custom or managed constraint.

• #get_effective_policy(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Gets the effective policy on a resource.

• #get_policy(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Gets a policy on a resource.

• #initialize {|config| ... } ⇒ Client constructor

  Create a new OrgPolicy client object.

• #list_constraints(request, options = nil) {|response, operation| ... } ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>

  Lists constraints that could be applied on the specified resource.

• #list_custom_constraints(request, options = nil) {|response, operation| ... } ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>

  Retrieves all of the custom constraints that exist on a particular organization resource.

• #list_policies(request, options = nil) {|response, operation| ... } ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>

  Retrieves all of the policies that exist on a particular resource.

• #logger ⇒ Logger

  The logger used for request/response debug logging.

• #universe_domain ⇒ String

  The effective universe domain.

• #update_custom_constraint(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Updates a custom constraint.

• #update_policy(request, options = nil) {|response, operation| ... } ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Updates a policy.

Methods included from Paths

#custom_constraint_path, #folder_path, #organization_path, #policy_path, #project_path

Constructor Details

#initialize {|config| ... } ⇒ Client

Create a new OrgPolicy client object.

Examples:

# Create a client using the default configuration
client = ::Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a client using a custom configuration
client = ::Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new do |config|
  config.timeout = 10.0
end

Yields:

• (config) —

  Configure the OrgPolicy client.

Yield Parameters:

• config (Client::Configuration)

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 203

def initialize
  # These require statements are intentionally placed here to initialize
  # the gRPC module only when it's required.
  # See https://github.com/googleapis/toolkit/issues/446
  require "gapic/grpc"
  require "google/cloud/orgpolicy/v2/orgpolicy_services_pb"

  # Create the configuration object
  @config = Configuration.new Client.configure

  # Yield the configuration if needed
  yield @config if block_given?

  # Create credentials
  credentials = @config.credentials
  # Use self-signed JWT if the endpoint is unchanged from default,
  # but only if the default endpoint does not have a region prefix.
  enable_self_signed_jwt = @config.endpoint.nil? ||
                           (@config.endpoint == Configuration::DEFAULT_ENDPOINT &&
                           !@config.endpoint.split(".").first.include?("-"))
  credentials ||= Credentials.default scope: @config.scope,
                                      enable_self_signed_jwt: enable_self_signed_jwt
  if credentials.is_a?(::String) || credentials.is_a?(::Hash)
    credentials = Credentials.new credentials, scope: @config.scope
  end
  @quota_project_id = @config.quota_project
  @quota_project_id ||= credentials.quota_project_id if credentials.respond_to? :quota_project_id

  @org_policy_stub = ::Gapic::ServiceStub.new(
    ::Google::Cloud::OrgPolicy::V2::OrgPolicy::Stub,
    credentials: credentials,
    endpoint: @config.endpoint,
    endpoint_template: DEFAULT_ENDPOINT_TEMPLATE,
    universe_domain: @config.universe_domain,
    channel_args: @config.channel_args,
    interceptors: @config.interceptors,
    channel_pool_config: @config.channel_pool,
    logger: @config.logger
  )

  @org_policy_stub.stub_logger&.info do |entry|
    entry.set_system_name
    entry.set_service
    entry.message = "Created client for #{entry.service}"
    entry.set_credentials_fields credentials
    entry.set "customEndpoint", @config.endpoint if @config.endpoint
    entry.set "defaultTimeout", @config.timeout if @config.timeout
    entry.set "quotaProject", @quota_project_id if @quota_project_id
  end
end

Class Method Details

.configure {|config| ... } ⇒ Client::Configuration

Configure the OrgPolicy Client class.

See Configuration for a description of the configuration fields.

Examples:

# Modify the configuration for all OrgPolicy clients
::Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.configure do |config|
  config.timeout = 10.0
end

Yields:

• (config) —

  Configure the Client client.

Yield Parameters:

• config (Client::Configuration)

Returns:

• (Client::Configuration)

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 81

def self.configure
  @configure ||= begin
    namespace = ["Google", "Cloud", "OrgPolicy", "V2"]
    parent_config = while namespace.any?
                      parent_name = namespace.join "::"
                      parent_const = const_get parent_name
                      break parent_const.configure if parent_const.respond_to? :configure
                      namespace.pop
                    end
    default_config = Client::Configuration.new parent_config

    default_config.rpcs.list_constraints.timeout = 60.0
    default_config.rpcs.list_constraints.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.list_policies.timeout = 60.0
    default_config.rpcs.list_policies.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.get_policy.timeout = 60.0
    default_config.rpcs.get_policy.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.get_effective_policy.timeout = 60.0
    default_config.rpcs.get_effective_policy.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.create_policy.timeout = 60.0
    default_config.rpcs.create_policy.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.update_policy.timeout = 60.0
    default_config.rpcs.update_policy.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.delete_policy.timeout = 60.0
    default_config.rpcs.delete_policy.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.create_custom_constraint.timeout = 60.0
    default_config.rpcs.create_custom_constraint.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.update_custom_constraint.timeout = 60.0
    default_config.rpcs.update_custom_constraint.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.get_custom_constraint.timeout = 60.0
    default_config.rpcs.get_custom_constraint.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.list_custom_constraints.timeout = 60.0
    default_config.rpcs.list_custom_constraints.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config.rpcs.delete_custom_constraint.timeout = 60.0
    default_config.rpcs.delete_custom_constraint.retry_policy = {
      initial_delay: 1.0, max_delay: 10.0, multiplier: 1.3, retry_codes: [14, 4]
    }

    default_config
  end
  yield @configure if block_given?
  @configure
end

Instance Method Details

#configure {|config| ... } ⇒ Client::Configuration

Configure the OrgPolicy Client instance.

The configuration is set to the derived mode, meaning that values can be changed, but structural changes (adding new fields, etc.) are not allowed. Structural changes should be made on configure.

See Configuration for a description of the configuration fields.

Yields:

• (config) —

  Configure the Client client.

Yield Parameters:

• config (Client::Configuration)

Returns:

• (Client::Configuration)

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 173

def configure
  yield @config if block_given?
  @config
end

#create_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint #create_custom_constraint(parent: nil, custom_constraint: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

Creates a custom constraint.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the organization does not exist. Returns a google.rpc.Status with google.rpc.Code.ALREADY_EXISTS if the constraint already exists on the given organization.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::CreateCustomConstraintRequest.new

# Call the create_custom_constraint method.
result = client.create_custom_constraint request

# The returned object is of type Google::Cloud::OrgPolicy::V2::CustomConstraint.
p result

Overloads:

• #create_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to create_custom_constraint via a request object, either of type CreateCustomConstraintRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::CreateCustomConstraintRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #create_custom_constraint(parent: nil, custom_constraint: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to create_custom_constraint via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • parent (::String) (defaults to: nil) —

    Required. Must be in the following form:

    • organizations/{organization_id}
  • custom_constraint (::Google::Cloud::OrgPolicy::V2::CustomConstraint, ::Hash) (defaults to: nil) —

    Required. Custom constraint to create.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::CustomConstraint)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::CustomConstraint)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 996

def create_custom_constraint request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::CreateCustomConstraintRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.create_custom_constraint.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.parent
    header_params["parent"] = request.parent
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.create_custom_constraint.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.create_custom_constraint.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :create_custom_constraint, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#create_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy #create_policy(parent: nil, policy: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

Creates a policy.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the constraint does not exist. Returns a google.rpc.Status with google.rpc.Code.ALREADY_EXISTS if the policy already exists on the given Google Cloud resource.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::CreatePolicyRequest.new

# Call the create_policy method.
result = client.create_policy request

# The returned object is of type Google::Cloud::OrgPolicy::V2::Policy.
p result

Overloads:

• #create_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to create_policy via a request object, either of type CreatePolicyRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::CreatePolicyRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #create_policy(parent: nil, policy: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to create_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • parent (::String) (defaults to: nil) —

    Required. The Google Cloud resource that will parent the new policy. Must be in one of the following forms:

    • projects/{project_number}
    • projects/{project_id}
    • folders/{folder_id}
    • organizations/{organization_id}
  • policy (::Google::Cloud::OrgPolicy::V2::Policy, ::Hash) (defaults to: nil) —

    Required. Policy to create.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::Policy)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::Policy)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 712

def create_policy request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::CreatePolicyRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.create_policy.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.parent
    header_params["parent"] = request.parent
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.create_policy.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.create_policy.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :create_policy, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#delete_custom_constraint(request, options = nil) ⇒ ::Google::Protobuf::Empty #delete_custom_constraint(name: nil) ⇒ ::Google::Protobuf::Empty

Deletes a custom constraint.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the constraint does not exist.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::DeleteCustomConstraintRequest.new

# Call the delete_custom_constraint method.
result = client.delete_custom_constraint request

# The returned object is of type Google::Protobuf::Empty.
p result

Overloads:

• #delete_custom_constraint(request, options = nil) ⇒ ::Google::Protobuf::Empty

  Pass arguments to delete_custom_constraint via a request object, either of type DeleteCustomConstraintRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::DeleteCustomConstraintRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #delete_custom_constraint(name: nil) ⇒ ::Google::Protobuf::Empty

  Pass arguments to delete_custom_constraint via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • name (::String) (defaults to: nil) —

    Required. Name of the custom constraint to delete. See the custom constraint entry for naming rules.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Protobuf::Empty)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Protobuf::Empty)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 1368

def delete_custom_constraint request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::DeleteCustomConstraintRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.delete_custom_constraint.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.name
    header_params["name"] = request.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.delete_custom_constraint.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.delete_custom_constraint.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :delete_custom_constraint, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#delete_policy(request, options = nil) ⇒ ::Google::Protobuf::Empty #delete_policy(name: nil, etag: nil) ⇒ ::Google::Protobuf::Empty

Deletes a policy.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the constraint or organization policy does not exist.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::DeletePolicyRequest.new

# Call the delete_policy method.
result = client.delete_policy request

# The returned object is of type Google::Protobuf::Empty.
p result

Overloads:

• #delete_policy(request, options = nil) ⇒ ::Google::Protobuf::Empty

  Pass arguments to delete_policy via a request object, either of type DeletePolicyRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::DeletePolicyRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #delete_policy(name: nil, etag: nil) ⇒ ::Google::Protobuf::Empty

  Pass arguments to delete_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • name (::String) (defaults to: nil) —

    Required. Name of the policy to delete. See the policy entry for naming rules.

  • etag (::String) (defaults to: nil) —

    Optional. The current etag of policy. If an etag is provided and does not match the current etag of the policy, deletion will be blocked and an ABORTED error will be returned.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Protobuf::Empty)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Protobuf::Empty)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 902

def delete_policy request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::DeletePolicyRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.delete_policy.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.name
    header_params["name"] = request.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.delete_policy.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.delete_policy.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :delete_policy, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#get_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint #get_custom_constraint(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

Gets a custom or managed constraint.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the custom or managed constraint does not exist.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::GetCustomConstraintRequest.new

# Call the get_custom_constraint method.
result = client.get_custom_constraint request

# The returned object is of type Google::Cloud::OrgPolicy::V2::CustomConstraint.
p result

Overloads:

• #get_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to get_custom_constraint via a request object, either of type GetCustomConstraintRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::GetCustomConstraintRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #get_custom_constraint(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to get_custom_constraint via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • name (::String) (defaults to: nil) —

    Required. Resource name of the custom or managed constraint. See the custom constraint entry for naming requirements.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::CustomConstraint)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::CustomConstraint)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 1176

def get_custom_constraint request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::GetCustomConstraintRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.get_custom_constraint.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.name
    header_params["name"] = request.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.get_custom_constraint.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.get_custom_constraint.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :get_custom_constraint, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#get_effective_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy #get_effective_policy(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

Gets the effective policy on a resource. This is the result of merging policies in the resource hierarchy and evaluating conditions. The returned policy will not have an etag or condition set because it is an evaluated policy across multiple resources. Subtrees of Resource Manager resource hierarchy with 'under:' prefix will not be expanded.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::GetEffectivePolicyRequest.new

# Call the get_effective_policy method.
result = client.get_effective_policy request

# The returned object is of type Google::Cloud::OrgPolicy::V2::Policy.
p result

Overloads:

• #get_effective_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to get_effective_policy via a request object, either of type GetEffectivePolicyRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::GetEffectivePolicyRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #get_effective_policy(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to get_effective_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • name (::String) (defaults to: nil) —

    Required. The effective policy to compute. See Policy for naming requirements.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::Policy)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::Policy)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 614

def get_effective_policy request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::GetEffectivePolicyRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.get_effective_policy.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.name
    header_params["name"] = request.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.get_effective_policy.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.get_effective_policy.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :get_effective_policy, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#get_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy #get_policy(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

Gets a policy on a resource.

If no policy is set on the resource, NOT_FOUND is returned. The etag value can be used with UpdatePolicy() to update a policy during read-modify-write.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::GetPolicyRequest.new

# Call the get_policy method.
result = client.get_policy request

# The returned object is of type Google::Cloud::OrgPolicy::V2::Policy.
p result

Overloads:

• #get_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to get_policy via a request object, either of type GetPolicyRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::GetPolicyRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #get_policy(name: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to get_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • name (::String) (defaults to: nil) —

    Required. Resource name of the policy. See Policy for naming requirements.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::Policy)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::Policy)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 523

def get_policy request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::GetPolicyRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.get_policy.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.name
    header_params["name"] = request.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.get_policy.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.get_policy.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :get_policy, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#list_constraints(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint> #list_constraints(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>

Lists constraints that could be applied on the specified resource.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::ListConstraintsRequest.new

# Call the list_constraints method.
result = client.list_constraints request

# The returned object is of type Gapic::PagedEnumerable. You can iterate
# over elements, and API calls will be issued to fetch pages as needed.
result.each do |item|
  # Each element is of type ::Google::Cloud::OrgPolicy::V2::Constraint.
  p item
end

Overloads:

• #list_constraints(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>

  Pass arguments to list_constraints via a request object, either of type ListConstraintsRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::ListConstraintsRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #list_constraints(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>

  Pass arguments to list_constraints via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • parent (::String) (defaults to: nil) —

    Required. The Google Cloud resource that parents the constraint. Must be in one of the following forms:

    • projects/{project_number}
    • projects/{project_id}
    • folders/{folder_id}
    • organizations/{organization_id}
  • page_size (::Integer) (defaults to: nil) —

    Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

  • page_token (::String) (defaults to: nil) —

    Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Constraint>)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 326

def list_constraints request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::ListConstraintsRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.list_constraints.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.parent
    header_params["parent"] = request.parent
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.list_constraints.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.list_constraints.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :list_constraints, request, options: options do |response, operation|
    response = ::Gapic::PagedEnumerable.new @org_policy_stub, :list_constraints, request, response, operation, options
    yield response, operation if block_given?
    throw :response, response
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#list_custom_constraints(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint> #list_custom_constraints(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>

Retrieves all of the custom constraints that exist on a particular organization resource.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::ListCustomConstraintsRequest.new

# Call the list_custom_constraints method.
result = client.list_custom_constraints request

# The returned object is of type Gapic::PagedEnumerable. You can iterate
# over elements, and API calls will be issued to fetch pages as needed.
result.each do |item|
  # Each element is of type ::Google::Cloud::OrgPolicy::V2::CustomConstraint.
  p item
end

Overloads:

• #list_custom_constraints(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>

  Pass arguments to list_custom_constraints via a request object, either of type ListCustomConstraintsRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::ListCustomConstraintsRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #list_custom_constraints(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>

  Pass arguments to list_custom_constraints via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • parent (::String) (defaults to: nil) —

    Required. The target Google Cloud resource that parents the set of custom constraints that will be returned from this call. Must be in one of the following forms:

    • organizations/{organization_id}
  • page_size (::Integer) (defaults to: nil) —

    Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

  • page_token (::String) (defaults to: nil) —

    Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::CustomConstraint>)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 1277

def list_custom_constraints request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::ListCustomConstraintsRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.list_custom_constraints.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.parent
    header_params["parent"] = request.parent
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.list_custom_constraints.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.list_custom_constraints.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :list_custom_constraints, request, options: options do |response, operation|
    response = ::Gapic::PagedEnumerable.new @org_policy_stub, :list_custom_constraints, request, response, operation, options
    yield response, operation if block_given?
    throw :response, response
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#list_policies(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy> #list_policies(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>

Retrieves all of the policies that exist on a particular resource.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::ListPoliciesRequest.new

# Call the list_policies method.
result = client.list_policies request

# The returned object is of type Gapic::PagedEnumerable. You can iterate
# over elements, and API calls will be issued to fetch pages as needed.
result.each do |item|
  # Each element is of type ::Google::Cloud::OrgPolicy::V2::Policy.
  p item
end

Overloads:

• #list_policies(request, options = nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>

  Pass arguments to list_policies via a request object, either of type ListPoliciesRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::ListPoliciesRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #list_policies(parent: nil, page_size: nil, page_token: nil) ⇒ ::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>

  Pass arguments to list_policies via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • parent (::String) (defaults to: nil) —

    Required. The target Google Cloud resource that parents the set of constraints and policies that will be returned from this call. Must be in one of the following forms:

    • projects/{project_number}
    • projects/{project_id}
    • folders/{folder_id}
    • organizations/{organization_id}
  • page_size (::Integer) (defaults to: nil) —

    Size of the pages to be returned. This is currently unsupported and will be ignored. The server may at any point start using this field to limit page size.

  • page_token (::String) (defaults to: nil) —

    Page token used to retrieve the next page. This is currently unsupported and will be ignored. The server may at any point start using this field.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Gapic::PagedEnumerable<::Google::Cloud::OrgPolicy::V2::Policy>)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 431

def list_policies request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::ListPoliciesRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.list_policies.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.parent
    header_params["parent"] = request.parent
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.list_policies.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.list_policies.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :list_policies, request, options: options do |response, operation|
    response = ::Gapic::PagedEnumerable.new @org_policy_stub, :list_policies, request, response, operation, options
    yield response, operation if block_given?
    throw :response, response
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#logger ⇒ Logger

The logger used for request/response debug logging.

Returns:

• (Logger)

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 259

def logger
  @org_policy_stub.logger
end

#universe_domain ⇒ String

The effective universe domain

Returns:

• (String)

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 183

def universe_domain
  @org_policy_stub.universe_domain
end

#update_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint #update_custom_constraint(custom_constraint: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

Updates a custom constraint.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the constraint does not exist.

Note: the supplied policy will perform a full overwrite of all fields.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::UpdateCustomConstraintRequest.new

# Call the update_custom_constraint method.
result = client.update_custom_constraint request

# The returned object is of type Google::Cloud::OrgPolicy::V2::CustomConstraint.
p result

Overloads:

• #update_custom_constraint(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to update_custom_constraint via a request object, either of type UpdateCustomConstraintRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::UpdateCustomConstraintRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #update_custom_constraint(custom_constraint: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::CustomConstraint

  Pass arguments to update_custom_constraint via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • custom_constraint (::Google::Cloud::OrgPolicy::V2::CustomConstraint, ::Hash) (defaults to: nil) —

    Required. CustomConstraint to update.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::CustomConstraint)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::CustomConstraint)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 1087

def update_custom_constraint request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::UpdateCustomConstraintRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.update_custom_constraint.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.custom_constraint&.name
    header_params["custom_constraint.name"] = request.custom_constraint.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.update_custom_constraint.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.update_custom_constraint.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :update_custom_constraint, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end

#update_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy #update_policy(policy: nil, update_mask: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

Updates a policy.

Returns a google.rpc.Status with google.rpc.Code.NOT_FOUND if the constraint or the policy do not exist. Returns a google.rpc.Status with google.rpc.Code.ABORTED if the etag supplied in the request does not match the persisted etag of the policy

Note: the supplied policy will perform a full overwrite of all fields.

Examples:

Basic example

require "google/cloud/org_policy/v2"

# Create a client object. The client can be reused for multiple calls.
client = Google::Cloud::OrgPolicy::V2::OrgPolicy::Client.new

# Create a request. To set request fields, pass in keyword arguments.
request = Google::Cloud::OrgPolicy::V2::UpdatePolicyRequest.new

# Call the update_policy method.
result = client.update_policy request

# The returned object is of type Google::Cloud::OrgPolicy::V2::Policy.
p result

Overloads:

• #update_policy(request, options = nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to update_policy via a request object, either of type UpdatePolicyRequest or an equivalent Hash.

  Parameters:

  • request (::Google::Cloud::OrgPolicy::V2::UpdatePolicyRequest, ::Hash) —

    A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.

  • options (::Gapic::CallOptions, ::Hash) (defaults to: nil) —

    Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.

• #update_policy(policy: nil, update_mask: nil) ⇒ ::Google::Cloud::OrgPolicy::V2::Policy

  Pass arguments to update_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).

  Parameters:

  • policy (::Google::Cloud::OrgPolicy::V2::Policy, ::Hash) (defaults to: nil) —

    Required. Policy to update.

  • update_mask (::Google::Protobuf::FieldMask, ::Hash) (defaults to: nil) —

    Field mask used to specify the fields to be overwritten in the policy by the set. The fields specified in the update_mask are relative to the policy, not the full request.

Yields:

• (response, operation) —

  Access the result along with the RPC operation

Yield Parameters:

• response (::Google::Cloud::OrgPolicy::V2::Policy)
• operation (::GRPC::ActiveCall::Operation)

Returns:

• (::Google::Cloud::OrgPolicy::V2::Policy)

Raises:

• (::Google::Cloud::Error) —

  if the RPC is aborted.

# File 'lib/google/cloud/org_policy/v2/org_policy/client.rb', line 809

def update_policy request, options = nil
  raise ::ArgumentError, "request must be provided" if request.nil?

  request = ::Gapic::Protobuf.coerce request, to: ::Google::Cloud::OrgPolicy::V2::UpdatePolicyRequest

  # Converts hash and nil to an options object
  options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h

  # Customize the options with defaults
  metadata = @config.rpcs.update_policy.metadata.to_h

  # Set x-goog-api-client, x-goog-user-project and x-goog-api-version headers
  metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
    lib_name: @config.lib_name, lib_version: @config.lib_version,
    gapic_version: ::Google::Cloud::OrgPolicy::V2::VERSION
  metadata[:"x-goog-api-version"] = API_VERSION unless API_VERSION.empty?
  metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id

  header_params = {}
  if request.policy&.name
    header_params["policy.name"] = request.policy.name
  end

  request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
  metadata[:"x-goog-request-params"] ||= request_params_header

  options.apply_defaults timeout:      @config.rpcs.update_policy.timeout,
                         metadata:     metadata,
                         retry_policy: @config.rpcs.update_policy.retry_policy

  options.apply_defaults timeout:      @config.timeout,
                         metadata:     @config.metadata,
                         retry_policy: @config.retry_policy

  @org_policy_stub.call_rpc :update_policy, request, options: options do |response, operation|
    yield response, operation if block_given?
  end
rescue ::GRPC::BadStatus => e
  raise ::Google::Cloud::Error.from_error(e)
end