Class: Google::Apis::StorageV1::Policy::Binding

Inherits:
Object
  • Object
show all
Includes:
Core::Hashable, Core::JsonObjectSupport
Defined in:
generated/google/apis/storage_v1/classes.rb,
generated/google/apis/storage_v1/representations.rb,
generated/google/apis/storage_v1/representations.rb

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Core::JsonObjectSupport

#to_json

Methods included from Core::Hashable

process_value, #to_h

Constructor Details

#initialize(**args) ⇒ Binding

Returns a new instance of Binding.


1945
1946
1947
# File 'generated/google/apis/storage_v1/classes.rb', line 1945

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#conditionGoogle::Apis::StorageV1::Expr

Represents an expression text. Example: title: "User account presence" description: "Determines whether the request has a user account" expression: " size(request.user) > 0" Corresponds to the JSON property condition


1891
1892
1893
# File 'generated/google/apis/storage_v1/classes.rb', line 1891

def condition
  @condition
end

#membersArray<String>

A collection of identifiers for members who may assume the provided role. Recognized identifiers are as follows:

  • allUsers — A special identifier that represents anyone on the internet; with or without a Google account.
  • allAuthenticatedUsers — A special identifier that represents anyone who is authenticated with a Google account or a service account.
  • user:emailid — An email address that represents a specific account. For example, user:[email protected] or user:[email protected].
  • serviceAccount:emailid — An email address that represents a service account. For example, serviceAccount:[email protected] .
  • group:emailid — An email address that represents a Google group. For example, group:[email protected].
  • domain:domain — A Google Apps domain name that represents all the users of that domain. For example, domain:google.com or domain:example.com.
  • projectOwner:projectid — Owners of the given project. For example, projectOwner:my-example-project
  • projectEditor:projectid — Editors of the given project. For example, projectEditor:my-example-project
  • projectViewer:projectid — Viewers of the given project. For example, projectViewer:my-example-project Corresponds to the JSON property members

Returns:

  • (Array<String>)

1915
1916
1917
# File 'generated/google/apis/storage_v1/classes.rb', line 1915

def members
  @members
end

#roleString

The role to which members belong. Two types of roles are supported: new IAM roles, which grant permissions that do not map directly to those provided by ACLs, and legacy IAM roles, which do map directly to ACL permissions. All roles are of the format roles/storage.specificRole. The new IAM roles are:

  • roles/storage.admin — Full control of Google Cloud Storage resources.
  • roles/storage.objectViewer — Read-Only access to Google Cloud Storage objects.
  • roles/storage.objectCreator — Access to create objects in Google Cloud Storage.
  • roles/storage.objectAdmin — Full control of Google Cloud Storage objects. The legacy IAM roles are:
  • roles/storage.legacyObjectReader — Read-only access to objects without listing. Equivalent to an ACL entry on an object with the READER role.
  • roles/storage.legacyObjectOwner — Read/write access to existing objects without listing. Equivalent to an ACL entry on an object with the OWNER role.
  • roles/storage.legacyBucketReader — Read access to buckets with object listing. Equivalent to an ACL entry on a bucket with the READER role.
  • roles/storage.legacyBucketWriter — Read access to buckets with object listing/creation/deletion. Equivalent to an ACL entry on a bucket with the WRITER role.
  • roles/storage.legacyBucketOwner — Read and write access to existing buckets with object listing/creation/deletion. Equivalent to an ACL entry on a bucket with the OWNER role. Corresponds to the JSON property role

Returns:

  • (String)

1943
1944
1945
# File 'generated/google/apis/storage_v1/classes.rb', line 1943

def role
  @role
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object


1950
1951
1952
1953
1954
# File 'generated/google/apis/storage_v1/classes.rb', line 1950

def update!(**args)
  @condition = args[:condition] if args.key?(:condition)
  @members = args[:members] if args.key?(:members)
  @role = args[:role] if args.key?(:role)
end