happygapi.binaryauthorization.projects
Binary Authorization API: projects. The management interface for Binary Authorization, a system providing policy control for images deployed to Kubernetes Engine clusters. See: https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects
Binary Authorization API: projects. The management interface for Binary Authorization, a system providing policy control for images deployed to Kubernetes Engine clusters. See: https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects
attestors-create$clj
(attestors-create$ auth parameters body)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/create
Required parameters: parent
Optional parameters: attestorId
Body:
{:name string, :userOwnedGrafeasNote {:publicKeys [AttestorPublicKey], :delegationServiceAccountEmail string, :noteReference string}, :updateTime string, :description string}
Creates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the attestor already exists.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/create
Required parameters: parent
Optional parameters: attestorId
Body:
{:name string,
:userOwnedGrafeasNote {:publicKeys [AttestorPublicKey],
:delegationServiceAccountEmail string,
:noteReference string},
:updateTime string,
:description string}
Creates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the attestor already exists.attestors-delete$clj
(attestors-delete$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/delete
Required parameters: name
Optional parameters: none
Deletes an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/delete Required parameters: name Optional parameters: none Deletes an attestor. Returns NOT_FOUND if the attestor does not exist.
attestors-get$clj
(attestors-get$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/get
Required parameters: name
Optional parameters: none
Gets an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/get Required parameters: name Optional parameters: none Gets an attestor. Returns NOT_FOUND if the attestor does not exist.
attestors-getIamPolicy$clj
(attestors-getIamPolicy$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/getIamPolicy
Required parameters: resource
Optional parameters: options.requestedPolicyVersion
Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/getIamPolicy Required parameters: resource Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
attestors-list$clj
(attestors-list$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/list
Required parameters: parent
Optional parameters: pageSize, pageToken
Lists attestors. Returns INVALID_ARGUMENT if the project does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/list Required parameters: parent Optional parameters: pageSize, pageToken Lists attestors. Returns INVALID_ARGUMENT if the project does not exist.
attestors-setIamPolicy$clj
(attestors-setIamPolicy$ auth parameters body)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy. Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED errors.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.attestors-testIamPermissions$clj
(attestors-testIamPermissions$ auth parameters body)Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/testIamPermissions
Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.attestors-update$clj
(attestors-update$ auth parameters body)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/update
Required parameters: name
Optional parameters: none
Body:
{:name string, :userOwnedGrafeasNote {:publicKeys [AttestorPublicKey], :delegationServiceAccountEmail string, :noteReference string}, :updateTime string, :description string}
Updates an attestor. Returns NOT_FOUND if the attestor does not exist.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/update
Required parameters: name
Optional parameters: none
Body:
{:name string,
:userOwnedGrafeasNote {:publicKeys [AttestorPublicKey],
:delegationServiceAccountEmail string,
:noteReference string},
:updateTime string,
:description string}
Updates an attestor. Returns NOT_FOUND if the attestor does not exist.attestors-validateAttestationOccurrence$clj
(attestors-validateAttestationOccurrence$ auth parameters body)Required parameters: attestor
Optional parameters: none
Body:
{:occurrenceNote string, :occurrenceResourceUri string, :attestation {:jwts [Jwt], :serializedPayload string, :signatures [Signature]}}
Returns whether the given Attestation for the given image URI was signed by the given Attestor
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/attestors/validateAttestationOccurrence
Required parameters: attestor
Optional parameters: none
Body:
{:occurrenceNote string,
:occurrenceResourceUri string,
:attestation {:jwts [Jwt],
:serializedPayload string,
:signatures [Signature]}}
Returns whether the given Attestation for the given image URI was signed by the given AttestorgetPolicy$clj
(getPolicy$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/getPolicy
Required parameters: name
Optional parameters: none
A policy specifies the attestors that must attest to a container image, before the project is allowed to deploy that image. There is at most one policy per project. All image admission requests are permitted if a project has no policy. Gets the policy for this project. Returns a default policy if the project does not have one.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/getPolicy Required parameters: name Optional parameters: none A policy specifies the attestors that must attest to a container image, before the project is allowed to deploy that image. There is at most one policy per project. All image admission requests are permitted if a project has no policy. Gets the policy for this project. Returns a default policy if the project does not have one.
policy-getIamPolicy$clj
(policy-getIamPolicy$ auth parameters)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/getIamPolicy
Required parameters: resource
Optional parameters: options.requestedPolicyVersion
Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/getIamPolicy Required parameters: resource Optional parameters: options.requestedPolicyVersion Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.
policy-setIamPolicy$clj
(policy-setIamPolicy$ auth parameters body)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy. Can return NOT_FOUND, INVALID_ARGUMENT, and PERMISSION_DENIED errors.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/setIamPolicy
Required parameters: resource
Optional parameters: none
Body:
{:policy {:bindings [Binding], :etag string, :version integer}}
Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.policy-testIamPermissions$clj
(policy-testIamPermissions$ auth parameters body)Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/policy/testIamPermissions
Required parameters: resource
Optional parameters: none
Body:
{:permissions [string]}
Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.updatePolicy$clj
(updatePolicy$ auth parameters body)https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/updatePolicy
Required parameters: name
Optional parameters: none
Body:
{:description string, :name string, :defaultAdmissionRule {:enforcementMode string, :requireAttestationsBy [string], :evaluationMode string}, :updateTime string, :istioServiceIdentityAdmissionRules {}, :clusterAdmissionRules {}, :globalPolicyEvaluationMode string, :kubernetesServiceAccountAdmissionRules {}, :kubernetesNamespaceAdmissionRules {}, :admissionWhitelistPatterns [{:namePattern string}]}
Creates or updates a project's policy, and returns a copy of the new policy. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.
https://cloud.google.com/binary-authorization/api/reference/rest/v1/projects/updatePolicy
Required parameters: name
Optional parameters: none
Body:
{:description string,
:name string,
:defaultAdmissionRule {:enforcementMode string,
:requireAttestationsBy [string],
:evaluationMode string},
:updateTime string,
:istioServiceIdentityAdmissionRules {},
:clusterAdmissionRules {},
:globalPolicyEvaluationMode string,
:kubernetesServiceAccountAdmissionRules {},
:kubernetesNamespaceAdmissionRules {},
:admissionWhitelistPatterns [{:namePattern string}]}
Creates or updates a project's policy, and returns a copy of the new policy. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.cljdoc is a website building & hosting documentation for Clojure/Script libraries
× close