Package-level declarations
Types
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices
and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": "user:aliya@example.com" } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com
from DATA_READ logging, and aliya@example.com
from DATA_WRITE logging.
Builder for AuditConfigArgs.
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
Builder for AuditLogConfigArgs.
Associates members
, or principals, with a role
.
Builder for BindingArgs.
A definition of a matcher that selects endpoints to which the policies should be applied.
Builder for EndpointMatcherArgs.
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
Builder for ExprArgs.
Builder for GetEndpointPolicyPlainArgs.
Builder for GetGatewayIamPolicyPlainArgs.
Builder for GetGatewayPlainArgs.
Builder for GetGrpcRoutePlainArgs.
Builder for GetHttpRoutePlainArgs.
Builder for GetMeshIamPolicyPlainArgs.
Builder for GetMeshPlainArgs.
Builder for GetServiceBindingPlainArgs.
Builder for GetTcpRoutePlainArgs.
Builder for GetTlsRoutePlainArgs.
The destination to which traffic will be routed.
Builder for GrpcRouteDestinationArgs.
Specification of how client requests are aborted as part of fault injection before being sent to a destination.
The specification for fault injection introduced into traffic to test the resiliency of clients to destination service failure. As part of fault injection, when clients send requests to a destination, delays can be introduced on a percentage of requests before sending those requests to the destination service. Similarly requests from clients can be aborted by for a percentage of requests.
Builder for GrpcRouteFaultInjectionPolicyArgs.
Specification of how client requests are delayed as part of fault injection before being sent to a destination.
A match against a collection of headers.
Builder for GrpcRouteHeaderMatchArgs.
Specifies a match against a method.
Builder for GrpcRouteMethodMatchArgs.
The specifications for retries.
Builder for GrpcRouteRetryPolicyArgs.
Specifies how to route matched traffic.
Builder for GrpcRouteRouteActionArgs.
Criteria for matching traffic. A RouteMatch will be considered to match when all supplied fields match.
Builder for GrpcRouteRouteMatchArgs.
Describes how to route traffic.
Builder for GrpcRouteRouteRuleArgs.
The Specification for allowing client side cross-origin requests.
Builder for HttpRouteCorsPolicyArgs.
Specifications of a destination to which the request should be routed to.
Builder for HttpRouteDestinationArgs.
Specification of how client requests are aborted as part of fault injection before being sent to a destination.
The specification for fault injection introduced into traffic to test the resiliency of clients to destination service failure. As part of fault injection, when clients send requests to a destination, delays can be introduced by client proxy on a percentage of requests before sending those requests to the destination service. Similarly requests can be aborted by client proxy for a percentage of requests.
Builder for HttpRouteFaultInjectionPolicyArgs.
Specification of how client requests are delayed as part of fault injection before being sent to a destination.
Specifies how to select a route rule based on HTTP request headers.
Builder for HttpRouteHeaderMatchArgs.
Represents an integer value range.
The specification for modifying HTTP header in HTTP request and HTTP response.
Builder for HttpRouteHeaderModifierArgs.
Specifications to match a query parameter in the request.
Builder for HttpRouteQueryParameterMatchArgs.
The specification for redirecting traffic.
Builder for HttpRouteRedirectArgs.
Specifies the policy on how requests are shadowed to a separate mirrored destination service. The proxy does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, the host/authority header is suffixed with -shadow.
Builder for HttpRouteRequestMirrorPolicyArgs.
The specifications for retries.
Builder for HttpRouteRetryPolicyArgs.
The specifications for routing traffic and applying associated policies.
Builder for HttpRouteRouteActionArgs.
RouteMatch defines specifications used to match requests. If multiple match types are set, this RouteMatch will match if ALL type of matches are matched.
Builder for HttpRouteRouteMatchArgs.
Specifies how to match traffic and how to route traffic when traffic is matched.
Builder for HttpRouteRouteRuleArgs.
The specification for modifying the URL of the request, prior to forwarding the request to the destination.
Builder for HttpRouteURLRewriteArgs.
The matcher that is based on node metadata presented by xDS clients.
Builder for MetadataLabelMatcherArgs.
Defines a name-pair value for a single label.
Builder for MetadataLabelsArgs.
The specifications for routing traffic and applying associated policies.
Builder for TcpRouteRouteActionArgs.
Describe the destination for traffic to be routed to.
Builder for TcpRouteRouteDestinationArgs.
RouteMatch defines the predicate used to match requests to a given action. Multiple match types are "OR"ed for evaluation. If no routeMatch field is specified, this rule will unconditionally match traffic.
Builder for TcpRouteRouteMatchArgs.
Specifies how to match traffic and how to route traffic when traffic is matched.
Builder for TcpRouteRouteRuleArgs.
The specifications for routing traffic and applying associated policies.
Builder for TlsRouteRouteActionArgs.
Describe the destination for traffic to be routed to.
Builder for TlsRouteRouteDestinationArgs.
RouteMatch defines the predicate used to match requests to a given action. Multiple match types are "AND"ed for evaluation. If no routeMatch field is specified, this rule will unconditionally match traffic.
Builder for TlsRouteRouteMatchArgs.
Specifies how to match traffic and how to route traffic when traffic is matched.
Builder for TlsRouteRouteRuleArgs.
Specification of a port-based selector.
Builder for TrafficPortSelectorArgs.