public static final class AccessContextManagerGrpc.AccessContextManagerBlockingStub extends AbstractBlockingStub<AccessContextManagerGrpc.AccessContextManagerBlockingStub>
API for setting [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] and [service
perimeters] [google.identity.accesscontextmanager.v1.ServicePerimeter]
for Google Cloud projects. Each organization has one [access policy]
[google.identity.accesscontextmanager.v1.AccessPolicy] that contains the
[access levels] [google.identity.accesscontextmanager.v1.AccessLevel]
and [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter]. This
[access policy] [google.identity.accesscontextmanager.v1.AccessPolicy] is
applicable to all resources in the organization.
AccessPolicies
Inheritance
java.lang.Object >
io.grpc.stub.AbstractStub >
io.grpc.stub.AbstractBlockingStub >
AccessContextManagerGrpc.AccessContextManagerBlockingStub
Inherited Members
io.grpc.stub.AbstractBlockingStub.<T>newStub(io.grpc.stub.AbstractStub.StubFactory<T>,io.grpc.Channel)
io.grpc.stub.AbstractBlockingStub.<T>newStub(io.grpc.stub.AbstractStub.StubFactory<T>,io.grpc.Channel,io.grpc.CallOptions)
io.grpc.stub.AbstractStub.<T>withOption(io.grpc.CallOptions.Key<T>,T)
io.grpc.stub.AbstractStub.build(io.grpc.Channel,io.grpc.CallOptions)
io.grpc.stub.AbstractStub.getCallOptions()
io.grpc.stub.AbstractStub.getChannel()
io.grpc.stub.AbstractStub.withCallCredentials(io.grpc.CallCredentials)
io.grpc.stub.AbstractStub.withChannel(io.grpc.Channel)
io.grpc.stub.AbstractStub.withCompression(java.lang.String)
io.grpc.stub.AbstractStub.withDeadline(io.grpc.Deadline)
io.grpc.stub.AbstractStub.withDeadlineAfter(long,java.util.concurrent.TimeUnit)
io.grpc.stub.AbstractStub.withExecutor(java.util.concurrent.Executor)
io.grpc.stub.AbstractStub.withInterceptors(io.grpc.ClientInterceptor...)
io.grpc.stub.AbstractStub.withMaxInboundMessageSize(int)
io.grpc.stub.AbstractStub.withMaxOutboundMessageSize(int)
io.grpc.stub.AbstractStub.withWaitForReady()
Methods
build(Channel channel, CallOptions callOptions)
protected AccessContextManagerGrpc.AccessContextManagerBlockingStub build(Channel channel, CallOptions callOptions)
Parameters
| Name | Description |
| channel | io.grpc.Channel
|
| callOptions | io.grpc.CallOptions
|
Returns
Overrides
io.grpc.stub.AbstractStub.build(io.grpc.Channel,io.grpc.CallOptions)
commitServicePerimeters(CommitServicePerimetersRequest request)
public Operation commitServicePerimeters(CommitServicePerimetersRequest request)
Commits the dry-run specification for all the [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] in an
access policy.
A commit operation on a service perimeter involves copying its spec field
to the status field of the service perimeter. Only [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] with
use_explicit_dry_run_spec field set to true are affected by a commit
operation. The long-running operation from this RPC has a successful
status after the dry-run specifications for all the [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] have been
committed. If a commit fails, it causes the long-running operation to
return an error response and the entire commit operation is cancelled.
When successful, the Operation.response field contains
CommitServicePerimetersResponse. The dry_run and the spec fields are
cleared after a successful commit operation.
createAccessLevel(CreateAccessLevelRequest request)
public Operation createAccessLevel(CreateAccessLevelRequest request)
Creates an [access level]
[google.identity.accesscontextmanager.v1.AccessLevel]. The long-running
operation from this RPC has a successful status after the [access
level] [google.identity.accesscontextmanager.v1.AccessLevel]
propagates to long-lasting storage. If [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] contain
errors, an error response is returned for the first error encountered.
createAccessPolicy(AccessPolicy request)
public Operation createAccessPolicy(AccessPolicy request)
Creates an access policy. This method fails if the organization already has
an access policy. The long-running operation has a successful status
after the access policy propagates to long-lasting storage.
Syntactic and basic semantic errors are returned in metadata as a
BadRequest proto.
createGcpUserAccessBinding(CreateGcpUserAccessBindingRequest request)
public Operation createGcpUserAccessBinding(CreateGcpUserAccessBindingRequest request)
Creates a [GcpUserAccessBinding]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding]. If the
client specifies a [name]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding.name],
the server ignores it. Fails if a resource already exists with the same
[group_key]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding.group_key].
Completion of this long-running operation does not necessarily signify that
the new binding is deployed onto all affected users, which may take more
time.
createServicePerimeter(CreateServicePerimeterRequest request)
public Operation createServicePerimeter(CreateServicePerimeterRequest request)
Creates a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter]. The
long-running operation from this RPC has a successful status after the
[service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter]
propagates to long-lasting storage. If a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter] contains
errors, an error response is returned for the first error encountered.
deleteAccessLevel(DeleteAccessLevelRequest request)
public Operation deleteAccessLevel(DeleteAccessLevelRequest request)
Deletes an [access level]
[google.identity.accesscontextmanager.v1.AccessLevel] based on the resource
name. The long-running operation from this RPC has a successful status
after the [access level]
[google.identity.accesscontextmanager.v1.AccessLevel] has been removed
from long-lasting storage.
deleteAccessPolicy(DeleteAccessPolicyRequest request)
public Operation deleteAccessPolicy(DeleteAccessPolicyRequest request)
Deletes an [access policy]
[google.identity.accesscontextmanager.v1.AccessPolicy] based on the
resource name. The long-running operation has a successful status after the
[access policy] [google.identity.accesscontextmanager.v1.AccessPolicy]
is removed from long-lasting storage.
deleteGcpUserAccessBinding(DeleteGcpUserAccessBindingRequest request)
public Operation deleteGcpUserAccessBinding(DeleteGcpUserAccessBindingRequest request)
Deletes a [GcpUserAccessBinding]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding].
Completion of this long-running operation does not necessarily signify that
the binding deletion is deployed onto all affected users, which may take
more time.
deleteServicePerimeter(DeleteServicePerimeterRequest request)
public Operation deleteServicePerimeter(DeleteServicePerimeterRequest request)
Deletes a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter] based on the
resource name. The long-running operation from this RPC has a successful
status after the [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter] is removed from
long-lasting storage.
getAccessLevel(GetAccessLevelRequest request)
public AccessLevel getAccessLevel(GetAccessLevelRequest request)
Gets an [access level]
[google.identity.accesscontextmanager.v1.AccessLevel] based on the resource
name.
getAccessPolicy(GetAccessPolicyRequest request)
public AccessPolicy getAccessPolicy(GetAccessPolicyRequest request)
Returns an [access policy]
[google.identity.accesscontextmanager.v1.AccessPolicy] based on the name.
getGcpUserAccessBinding(GetGcpUserAccessBindingRequest request)
public GcpUserAccessBinding getGcpUserAccessBinding(GetGcpUserAccessBindingRequest request)
Gets the [GcpUserAccessBinding]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding] with
the given name.
getIamPolicy(GetIamPolicyRequest request)
public Policy getIamPolicy(GetIamPolicyRequest request)
Gets the IAM policy for the specified Access Context Manager
access policy.
| Name | Description |
| request | com.google.iam.v1.GetIamPolicyRequest
|
Returns
| Type | Description |
| com.google.iam.v1.Policy | |
getServicePerimeter(GetServicePerimeterRequest request)
public ServicePerimeter getServicePerimeter(GetServicePerimeterRequest request)
Gets a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter] based on the
resource name.
listAccessLevels(ListAccessLevelsRequest request)
public ListAccessLevelsResponse listAccessLevels(ListAccessLevelsRequest request)
Lists all [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] for an access
policy.
listAccessPolicies(ListAccessPoliciesRequest request)
public ListAccessPoliciesResponse listAccessPolicies(ListAccessPoliciesRequest request)
Lists all [access policies]
[google.identity.accesscontextmanager.v1.AccessPolicy] in an
organization.
listGcpUserAccessBindings(ListGcpUserAccessBindingsRequest request)
public ListGcpUserAccessBindingsResponse listGcpUserAccessBindings(ListGcpUserAccessBindingsRequest request)
Lists all [GcpUserAccessBindings]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding] for a
Google Cloud organization.
listServicePerimeters(ListServicePerimetersRequest request)
public ListServicePerimetersResponse listServicePerimeters(ListServicePerimetersRequest request)
Lists all [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] for an
access policy.
replaceAccessLevels(ReplaceAccessLevelsRequest request)
public Operation replaceAccessLevels(ReplaceAccessLevelsRequest request)
Replaces all existing [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] in an [access
policy] [google.identity.accesscontextmanager.v1.AccessPolicy] with
the [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] provided. This
is done atomically. The long-running operation from this RPC has a
successful status after all replacements propagate to long-lasting
storage. If the replacement contains errors, an error response is returned
for the first error encountered. Upon error, the replacement is cancelled,
and existing [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] are not
affected. The Operation.response field contains
ReplaceAccessLevelsResponse. Removing [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] contained in existing
[service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] result in an
error.
replaceServicePerimeters(ReplaceServicePerimetersRequest request)
public Operation replaceServicePerimeters(ReplaceServicePerimetersRequest request)
Replace all existing [service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] in an [access
policy] [google.identity.accesscontextmanager.v1.AccessPolicy] with the
[service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] provided. This
is done atomically. The long-running operation from this RPC has a
successful status after all replacements propagate to long-lasting storage.
Replacements containing errors result in an error response for the first
error encountered. Upon an error, replacement are cancelled and existing
[service perimeters]
[google.identity.accesscontextmanager.v1.ServicePerimeter] are not
affected. The Operation.response field contains
ReplaceServicePerimetersResponse.
setIamPolicy(SetIamPolicyRequest request)
public Policy setIamPolicy(SetIamPolicyRequest request)
Sets the IAM policy for the specified Access Context Manager
access policy.
This method replaces the existing IAM policy on the access policy. The IAM
policy controls the set of users who can perform specific operations on the
Access Context Manager access
policy.
| Name | Description |
| request | com.google.iam.v1.SetIamPolicyRequest
|
Returns
| Type | Description |
| com.google.iam.v1.Policy | |
testIamPermissions(TestIamPermissionsRequest request)
public TestIamPermissionsResponse testIamPermissions(TestIamPermissionsRequest request)
Returns the IAM permissions that the caller has on the specified Access
Context Manager resource. The resource can be an
AccessPolicy,
AccessLevel, or
ServicePerimeter. This method does not support other resources.
| Name | Description |
| request | com.google.iam.v1.TestIamPermissionsRequest
|
Returns
| Type | Description |
| com.google.iam.v1.TestIamPermissionsResponse | |
updateAccessLevel(UpdateAccessLevelRequest request)
public Operation updateAccessLevel(UpdateAccessLevelRequest request)
Updates an [access level]
[google.identity.accesscontextmanager.v1.AccessLevel]. The long-running
operation from this RPC has a successful status after the changes to
the [access level]
[google.identity.accesscontextmanager.v1.AccessLevel] propagate
to long-lasting storage. If [access levels]
[google.identity.accesscontextmanager.v1.AccessLevel] contain
errors, an error response is returned for the first error encountered.
updateAccessPolicy(UpdateAccessPolicyRequest request)
public Operation updateAccessPolicy(UpdateAccessPolicyRequest request)
Updates an [access policy]
[google.identity.accesscontextmanager.v1.AccessPolicy]. The
long-running operation from this RPC has a successful status after the
changes to the [access policy]
[google.identity.accesscontextmanager.v1.AccessPolicy] propagate
to long-lasting storage.
updateGcpUserAccessBinding(UpdateGcpUserAccessBindingRequest request)
public Operation updateGcpUserAccessBinding(UpdateGcpUserAccessBindingRequest request)
Updates a [GcpUserAccessBinding]
[google.identity.accesscontextmanager.v1.GcpUserAccessBinding].
Completion of this long-running operation does not necessarily signify that
the changed binding is deployed onto all affected users, which may take
more time.
updateServicePerimeter(UpdateServicePerimeterRequest request)
public Operation updateServicePerimeter(UpdateServicePerimeterRequest request)
Updates a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter]. The
long-running operation from this RPC has a successful status after the
[service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter]
propagates to long-lasting storage. If a [service perimeter]
[google.identity.accesscontextmanager.v1.ServicePerimeter] contains
errors, an error response is returned for the first error encountered.
