iSrSSKJr SSKJr SSKJr SSKJr Sr "SS\R5r "S S \R5r "S S \R5r "S S\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS \R5r"S!S"\R5r"S#S$\R5r"S%S&\R5r"S'S(\R5r"S)S*\R5r"S+S,\R5r"S-S.\R5r"S/S0\R5r"S1S2\R5r "S3S4\R5r!"S5S6\R5r""S7S8\R5r#"S9S:\R5r$"S;S<\R5r%"S=S>\R5r&"S?S@\R5r'"SASB\R5r("SCSD\R5r)"SESF\R5r*"SGSH\R5r+"SISJ\R5r,"SKSL\R5r-"SMSN\R5r."SOSP\R5r/\R`"\+SQSR5 \Rb"\+RdSSST5 \Rb"\+RdSUSV5 gW)Xz=Generated message classes for authztoolkit version v1alpha. )absolute_import)messages)encoding) extra_types authztoolkitc<\rSrSrSr\R "S5rSrg)AnthosServiceMeshzMessage describing AnthosServiceMesh based workload object. Fields: serviceAccount: Immutable. workload ID = IAM Service account N) __name__ __module__ __qualname____firstlineno____doc__ _messages StringFieldserviceAccount__static_attributes__r _lib/googlecloudsdk/generated_clients/apis/authztoolkit/v1alpha/authztoolkit_v1alpha_messages.pyr r s ((+.rr c:\rSrSrSr\R "SSS9rSrg)'AuthztoolkitProjectsLocationsGetRequestzcA AuthztoolkitProjectsLocationsGetRequest object. Fields: name: Resource name for the location. r Trequiredr N r rrrrrrnamerr rrrr   q4 0$rrc\rSrSrSr\R "SSS9r\R "S5r\R "SSS9r \R"S \RRS 9r \R "S 5rS rg )(AuthztoolkitProjectsLocationsListRequest$aA AuthztoolkitProjectsLocationsListRequest object. Fields: extraLocationTypes: Optional. Do not use this field. It is unsupported and is ignored unless explicitly documented otherwise. This is primarily for internal usage. filter: A filter to narrow down results to a preferred subset. The filtering language accepts strings like `"displayName=tokyo"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160). name: The resource that owns the locations collection, if applicable. pageSize: The maximum number of results to return. If not set, the service selects a default. pageToken: A page token received from the `next_page_token` field in the response. Send that page token to receive the subsequent page. r Trepeatedrvariantr N)r rrrrrrextraLocationTypesfilterr IntegerFieldVariantINT32pageSize pageTokenrr rrr!r!$sl !,,Q>   #&   q4 0$  # #Ay/@/@/F/F G(##A&)rr!c`\rSrSrSr\R "SS5r\R"SSS9r Sr g ) 4AuthztoolkitProjectsLocationsOperationsCancelRequest<zA AuthztoolkitProjectsLocationsOperationsCancelRequest object. Fields: cancelOperationRequest: A CancelOperationRequest resource to be passed as the request body. name: The name of the operation resource to be cancelled. CancelOperationRequestr r%Trr N) r rrrrr MessageFieldcancelOperationRequestrrrr rrr3r3<s/%112JAN   q4 0$rr3c:\rSrSrSr\R "SSS9rSrg)4AuthztoolkitProjectsLocationsOperationsDeleteRequestIzA AuthztoolkitProjectsLocationsOperationsDeleteRequest object. Fields: name: The name of the operation resource to be deleted. r Trr Nrr rrr9r9Irrr9c:\rSrSrSr\R "SSS9rSrg)1AuthztoolkitProjectsLocationsOperationsGetRequestSzqA AuthztoolkitProjectsLocationsOperationsGetRequest object. Fields: name: The name of the operation resource. r Trr Nrr rrr<r<Srrr<c\rSrSrSr\R "S5r\R "SSS9r\R"S\RRS9r \R "S 5r \R"S 5rS rg ) 2AuthztoolkitProjectsLocationsOperationsListRequest]aA AuthztoolkitProjectsLocationsOperationsListRequest object. Fields: filter: The standard list filter. name: The name of the operation's parent resource. pageSize: The standard list page size. pageToken: The standard list page token. returnPartialSuccess: When set to `true`, operations that are reachable are returned as normal, and those that are unreachable are returned in the [ListOperationsResponse.unreachable] field. This can only be `true` when reading across collections e.g. when `parent` is set to `"projects/example/locations/-"`. This field is not by default supported and will result in an `UNIMPLEMENTED` error if set unless explicitly documented otherwise in service or product specific documentation. r r%Trr&r(r'r*r N)r rrrrrrr,rr-r.r/r0r1 BooleanFieldreturnPartialSuccessrr rrr?r?]sj   #&   q4 0$  # #Ay/@/@/F/F G(##A&)"//2rr?c\rSrSrSr\R "SSS9r\R"SS5r \R "S5r \R "S 5r S r g ) 2AuthztoolkitProjectsLocationsPoliciesCreateRequestuaHA AuthztoolkitProjectsLocationsPoliciesCreateRequest object. Fields: parent: Required. Value for parent. Example: projects/{project)/locations/{location} policy: A Policy resource to be passed as the request body. policyId: Required. The unique ID of the policy to be created. requestId: Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000). r TrPolicyr%r&r'r N) r rrrrrrparentr6policypolicyId requestIdrr rrrDrDusM(  T 2&  ! !(A .&  " "1 %(##A&)rrDc^\rSrSrSr\R "SSS9r\R "S5rSr g) 2AuthztoolkitProjectsLocationsPoliciesDeleteRequestaA AuthztoolkitProjectsLocationsPoliciesDeleteRequest object. Fields: name: Required. Name of the resource requestId: Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000). r Trr%r N r rrrrrrrrJrr rrrLrL+"   q4 0$##A&)rrLc:\rSrSrSr\R "SSS9rSrg)/AuthztoolkitProjectsLocationsPoliciesGetRequestzjA AuthztoolkitProjectsLocationsPoliciesGetRequest object. Fields: name: Required. Name of the resource r Trr Nrr rrrQrQrrrQc\rSrSrSr\R "S5r\R "S5r\R"S\RRS9r \R "S5r \R "SS S 9rS rg ) 0AuthztoolkitProjectsLocationsPoliciesListRequestaA AuthztoolkitProjectsLocationsPoliciesListRequest object. Fields: filter: Query filter. Filters must adhere to the following rules: * Boolean values must be unquoted "true" or "false" string literals. * String values must be double-quoted. * Wildcard character("*") is limited to use with the has operator (":"), and can be used only at the end of a string literal. * Timestamps must be quoted strings in the RFC3339 format. Example : filter=create_time>"2022-05-09T22:28:28Z" Filters support logical operators - AND, OR, NOT (Note: OR has higher precedence than AND) orderBy: Criteria for ordering results. Currently supported fields for ordering - name and create_time. Example: order_by="name desc,create_time desc". pageSize: Requested page size. Server may return fewer items than requested. The maximum allowed value is 50, values above this will be coerced to 50. Default value: 50 pageToken: Next page token, received from a previous policies.list call. When paginating, all other input parameters (except page_token) provided to policies.list call must remain the same. parent: Required. Parent value for ListPoliciesRequest r r%r&r(r'r*Trr Nr rrrrrrr,orderByr-r.r/r0r1rGrr rrrTrTsi.   #&  ! !! $'  # #Ay/@/@/F/F G(##A&)  T 2&rrTc\rSrSrSr\R "SSS9r\R"SS5r \R "S5r \R "S 5r S r g ) 1AuthztoolkitProjectsLocationsPoliciesPatchRequestaqA AuthztoolkitProjectsLocationsPoliciesPatchRequest object. Fields: name: Name of resource policy: A Policy resource to be passed as the request body. requestId: Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000). updateMask: Required. Field mask is used to specify the fields to be overwritten in the Policy resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. If the user provides the value '*', all fields will be updated. Note: Field masks are not supported to update deeper-levels of policy_spec, i.e. partial updates for policy_spec are not supported. r TrrFr%r&r'r N) r rrrrrrrr6rHrJ updateMaskrr rrrYrYsM0   q4 0$  ! !(A .&##A&)$$Q'*rrYc\rSrSrSr\R "SSS9r\R "S5r\R"SS5r \R "S 5r S r g ) "2022-05-09T22:28:28Z" Filters support logical operators - AND, OR, NOT (Note: OR has higher precedence than AND) orderBy: Optional. Criteria for ordering results. Currently supported fields for ordering - name and create_time. Example: order_by="name desc,create_time desc". pageSize: Optional. Requested page size. Server may return fewer items than requested. The maximum allowed value is 50, values above this will be coerced to 50. Default value: 50 pageToken: Optional. Next page token, received from a previous targetAssociations.list call. When paginating, all other input parameters (except page_token) provided to targetAssociations.list call must remain the same. parent: Required. Parent value for ListTargetAssociationsRequest r r%r&r(r'r*Trr NrVr rrrgrg+si0   #&  ! !! $'  # #Ay/@/@/F/F G(##A&)  T 2&rrgc\rSrSrSr\R "SSS9r\R "S5r\R"SS5r \R "S 5r S r g ) ;AuthztoolkitProjectsLocationsTargetAssociationsPatchRequestiKa_A AuthztoolkitProjectsLocationsTargetAssociationsPatchRequest object. Fields: name: Identifier. name of resource requestId: Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. The server will guarantee that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000). targetAssociation: A TargetAssociation resource to be passed as the request body. updateMask: Required. Field mask is used to specify the fields to be overwritten in the TargetAssociation resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten. r Trr%r_r&r'r N) r rrrrrrrrJr6r`r[rr rrririKsO0   q4 0$##A&),,-@!D$$Q'*rric<\rSrSrSr\R "SSSS9rSrg) CELPolicyijaAuthorization policy schema. A policy is composed of a set of Rules that specifies the conditions that need to be met in order for an authorization decision to be finalized. For example, a policy could specify that all requests to a specific IP address or that requests from a specific SPIFFE ID must be allowed. Policy can also contain a CEL expression for custom checks. Fields: ruleBlocks: List of rule blocks. RuleBlockr Tr#r N) r rrrrrr6 ruleBlocksrr rrrkrkjs%%k1tD*rrkc\rSrSrSrSrg)r5ixz3The request message for Operations.CancelOperation.r Nr rrrrrr rrr5r5xs" to include in api requests. uploadType: Legacy upload protocol for media (e.g. "media", "multipart"). upload_protocol: Upload protocol for media (e.g. "raw", "multipart"). c$\rSrSrSrSrSrSrSrg)*StandardQueryParameters.AltValueValuesEnumizData format for response. Values: json: Responses with Content-Type of application/json media: Media download with context-dependent Content-Type proto: Responses with Content-Type of application/x-protobuf rr r%r N) r rrrrjsonmediaprotorr rrAltValueValuesEnumrs D E Errc \rSrSrSrSrSrSrg)-StandardQueryParameters.FXgafvValueValuesEnumizFV1 error format. Values: _1: v1 error format _2: v2 error format rr r N)r rrrr_1_2rr rrFXgafvValueValuesEnumrs B Brrr r%r&r)defaultr'r*rrT r N)r rrrrrrrrrf__xgafvr access_tokenaltcallbackfieldsr oauth_tokenrA prettyPrint quotaUsertrace uploadTypeupload_protocolrr rrrrs4 9>>  inn  !8! <(&&q),0!VD#  " "1 %(   #&a #%%a(+&&q$7+##A&)    #%$$R(*))"-/rrc\rSrSrSr\R "S5"SS\R55r \R"S\RRS9r \R"SSS S 9r\R "S 5rS rg )ri4aThe `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). Messages: DetailsValueListEntry: A DetailsValueListEntry object. Fields: code: The status code, which should be an enum value of google.rpc.Code. details: A list of messages that carry the error details. There is a common set of message types for APIs to use. message: A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client. rcf\rSrSrSr"SS\R 5r\R"SSSS9r Sr g ) Status.DetailsValueListEntryiHzA DetailsValueListEntry object. Messages: AdditionalProperty: An additional property for a DetailsValueListEntry object. Fields: additionalProperties: Properties of the object. Contains field @type with type URL. cb\rSrSrSr\R "S5r\R"SS5r Sr g)/Status.DetailsValueListEntry.AdditionalPropertyiUzAn additional property for a DetailsValueListEntry object. Fields: key: Name of the additional property. value: A extra_types.JsonValue attribute. r rr%r Nrr rrrrUrrrr Tr#r Nrr rrDetailsValueListEntryrHrrrr r(r%Tr#r&r N)r rrrrrrrrrr-r.r/coder6detailsrmessagerr rrrr4s|& !!"89Zi//Z:Z2   9+<+<+B+B C$  " "#:A M'  ! !! $'rrcf\rSrSrSr"SS\R 5r\R"SS5r \R"S5r \R"S5r \R"S 5r\R"SS 5r\R"S 5r\R"S S SS9r\R"S5rSrg)r_iga=Message describing TargetAssociation object Enums: EnableAuthorizationDebugLogValueValuesEnum: Optional. Enable the generation of authorization debug logs for the target. Fields: asmWorkload: Immutable. AnthosServiceMesh based workload. Authorization Toolkit does not auto configure the authorization settings on the workload. createTime: Output only. [Output only] Create time stamp displayName: Optional. An arbitrary user-provided name for TargetAssociation. The display name should adhere to the following format. * Must be 6 to 63 characters in length. * Can only contain lowercase letters, numbers, and hyphens. * Must start with a letter. enableAuthorizationAuditLog: Optional. Enable the generation of authorization audit logs for the target. enableAuthorizationDebugLog: Optional. Enable the generation of authorization debug logs for the target. name: Identifier. name of resource policies: Optional. List of policies with full policy name and its configuration updateTime: Output only. [Output only] Update time stamp c(\rSrSrSrSrSrSrSrSr g) >$&&':A>+$$Q'*%%a(+ ) 6 6q 9 ) 3 34`bc d   q !$  # #NA E($$Q'*rr_c\rSrSrSr\R "SSS9r\R "SSS9r\R "SSS9r \R"SS\RRS 9r S rg ) rizTo clause specifies the host(s), method(s), path(s) and port(s) that the rule applies to. Fields: hosts: List of hosts. methods: List of HTTP request methods. paths: List of request paths. ports: List of host ports. r Tr#r%r&r')r$r)r N)r rrrrrrhostsmethodspathsr-r.r/portsrr rrrrs_   D 1%  ! !!d 3'   D 1%  T9;L;L;R;R S%rrc<\rSrSrSr\R "S5rSrg)riz\Custom condition the request must satisfy. Fields: expr: CEL expression to be evaluated. r r N) r rrrrrrexprrr rrrrs   q !$rrrz$.xgafvr1r2N)3r __future__rapitools.base.protorpcliterrapitools.base.pyrrpackagerr rr!r3r9r<r?rDrLrQrTrYr]rcrergrirkr5rqrsrvr{rrrwr|rrFrrrlrrr_rrAddCustomJsonFieldMappingAddCustomJsonEnumMappingrr rrrs '<%( , )),1i.?.?1'y/@/@'0 19;L;L 119;L;L11 8I8I139J9J30'9J9J'6'9J9J',1i6G6G13y7H7H3>( 8I8I(>19CTCT1:'9CTCT',1 @Q@Q13ARAR3@()BSBS(> E !! E=Y..=I  79  7 +I-- +8Y..8$ 89,, 8 8Y%6%68"M"y  M"`i8 !!i8X" ))"8(Y  (* $9$$ $+9  +"; !!;8<.i//<.~0%Y  0%f3( ))3(lT  T""9  " ""Z4!!114>!!114>r