Class: Google::Identity::AccessContextManager::V1::DevicePolicy

Inherits:
Object
  • Object
show all
Extended by:
Protobuf::MessageExts::ClassMethods
Includes:
Protobuf::MessageExts
Defined in:
proto_docs/google/identity/accesscontextmanager/v1/access_level.rb

Overview

DevicePolicy specifies device specific restrictions necessary to acquire a given access level. A DevicePolicy specifies requirements for requests from devices to be granted access levels, it does not do any enforcement on the device. DevicePolicy acts as an AND over all specified fields, and each repeated field is an OR over its elements. Any unset fields are ignored. For example, if the proto is { os_type : DESKTOP_WINDOWS, os_type : DESKTOP_LINUX, encryption_status: ENCRYPTED}, then the DevicePolicy will be true for requests originating from encrypted Linux desktops and encrypted Windows desktops.

Instance Attribute Summary collapse

Instance Attribute Details

#allowed_device_management_levels::Array<::Google::Identity::AccessContextManager::Type::DeviceManagementLevel>

Returns Allowed device management levels, an empty list allows all management levels.

Returns:



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end

#allowed_encryption_statuses::Array<::Google::Identity::AccessContextManager::Type::DeviceEncryptionStatus>

Returns Allowed encryptions statuses, an empty list allows all statuses.

Returns:



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end

#os_constraints::Array<::Google::Identity::AccessContextManager::V1::OsConstraint>

Returns Allowed OS versions, an empty list allows all types and all versions.

Returns:



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end

#require_admin_approval::Boolean

Returns Whether the device needs to be approved by the customer admin.

Returns:

  • (::Boolean)

    Whether the device needs to be approved by the customer admin.



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end

#require_corp_owned::Boolean

Returns Whether the device needs to be corp owned.

Returns:

  • (::Boolean)

    Whether the device needs to be corp owned.



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end

#require_screenlock::Boolean

Returns Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.

Returns:

  • (::Boolean)

    Whether or not screenlock is required for the DevicePolicy to be true. Defaults to false.



170
171
172
173
 
# File 'proto_docs/google/identity/accesscontextmanager/v1/access_level.rb', line 170

class DevicePolicy
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods
end