Binary Authorization API: projects. The management interface for Binary Authorization, a system providing policy control for images deployed to Kubernetes Engine clusters.
See: https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects
Binary Authorization API: projects. The management interface for Binary Authorization, a system providing policy control for images deployed to Kubernetes Engine clusters. See: https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects
(attestors-create$ auth args body)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/create
Required parameters: parent
Optional parameters: attestorId
Body:
{:name string, :userOwnedGrafeasNote {:noteReference string, :delegationServiceAccountEmail string, :publicKeys [AttestorPublicKey]}, :description string, :updateTime string}
Creates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the attestor already exists.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/create Required parameters: parent Optional parameters: attestorId Body: {:name string, :userOwnedGrafeasNote {:noteReference string, :delegationServiceAccountEmail string, :publicKeys [AttestorPublicKey]}, :description string, :updateTime string} Creates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the attestor already exists.
(attestors-delete$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/delete
Required parameters: name
Optional parameters: none Deletes an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/delete Required parameters: name Optional parameters: none Deletes an attestor. Returns NOT_FOUND if the attestor does not exist.
(attestors-get$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/get
Required parameters: name
Optional parameters: none Gets an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/get Required parameters: name Optional parameters: none Gets an attestor. Returns NOT_FOUND if the attestor does not exist.
(attestors-getIamPolicy$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/getIamPolicy
Required parameters: resource
Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/getIamPolicy Required parameters: resource Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
(attestors-list$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/list
Required parameters: parent
Optional parameters: pageToken, pageSize Lists attestors. Returns INVALID_ARGUMENT if the project does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/list Required parameters: parent Optional parameters: pageToken, pageSize Lists attestors. Returns INVALID_ARGUMENT if the project does not exist.
(attestors-setIamPolicy$ auth args body)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy.
Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/setIamPolicy Required parameters: resource Optional parameters: none Body: {:policy {:bindings [Binding], :etag string, :version integer}} Sets the access control policy on the specified resource. Replaces any existing policy. Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED
(attestors-testIamPermissions$ auth args body)
Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error.
Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/testIamPermissions Required parameters: resource Optional parameters: none Body: {:permissions [string]} Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
(attestors-update$ auth args body)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/update
Required parameters: name
Optional parameters: none
Body:
{:name string, :userOwnedGrafeasNote {:noteReference string, :delegationServiceAccountEmail string, :publicKeys [AttestorPublicKey]}, :description string, :updateTime string}
Updates an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/update Required parameters: name Optional parameters: none Body: {:name string, :userOwnedGrafeasNote {:noteReference string, :delegationServiceAccountEmail string, :publicKeys [AttestorPublicKey]}, :description string, :updateTime string} Updates an attestor. Returns NOT_FOUND if the attestor does not exist.
(getPolicy$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/getPolicy
Required parameters: name
Optional parameters: none A policy specifies the attestors that must attest to a container image, before the project is allowed to deploy that image. There is at most one policy per project. All image admission requests are permitted if a project has no policy.
Gets the policy for this project. Returns a default policy if the project does not have one.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/getPolicy Required parameters: name Optional parameters: none A policy specifies the attestors that must attest to a container image, before the project is allowed to deploy that image. There is at most one policy per project. All image admission requests are permitted if a project has no policy. Gets the policy for this project. Returns a default policy if the project does not have one.
(policy-getIamPolicy$ auth args)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/getIamPolicy
Required parameters: resource
Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/getIamPolicy Required parameters: resource Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
(policy-setIamPolicy$ auth args body)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy.
Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/setIamPolicy Required parameters: resource Optional parameters: none Body: {:policy {:bindings [Binding], :etag string, :version integer}} Sets the access control policy on the specified resource. Replaces any existing policy. Can return Public Errors: NOT_FOUND, INVALID_ARGUMENT and PERMISSION_DENIED
(policy-testIamPermissions$ auth args body)
Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error.
Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/testIamPermissions Required parameters: resource Optional parameters: none Body: {:permissions [string]} Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
(updatePolicy$ auth args body)
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/updatePolicy
Required parameters: name
Optional parameters: none
Body:
{:globalPolicyEvaluationMode string, :clusterAdmissionRules {}, :description string, :admissionWhitelistPatterns [{:namePattern string}], :updateTime string, :name string, :defaultAdmissionRule {:requireAttestationsBy [string], :evaluationMode string, :enforcementMode string}}
Creates or updates a project's policy, and returns a copy of the new policy. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/updatePolicy Required parameters: name Optional parameters: none Body: {:globalPolicyEvaluationMode string, :clusterAdmissionRules {}, :description string, :admissionWhitelistPatterns [{:namePattern string}], :updateTime string, :name string, :defaultAdmissionRule {:requireAttestationsBy [string], :evaluationMode string, :enforcementMode string}} Creates or updates a project's policy, and returns a copy of the new policy. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.
cljdoc is a website building & hosting documentation for Clojure/Script libraries
× close