diff --git a/packages/google-cloud-assuredworkloads/protos/google/cloud/assuredworkloads/v1/assuredworkloads.proto b/packages/google-cloud-assuredworkloads/protos/google/cloud/assuredworkloads/v1/assuredworkloads.proto index 7068506f612..f6349f35fd5 100644 --- a/packages/google-cloud-assuredworkloads/protos/google/cloud/assuredworkloads/v1/assuredworkloads.proto +++ b/packages/google-cloud-assuredworkloads/protos/google/cloud/assuredworkloads/v1/assuredworkloads.proto @@ -181,7 +181,7 @@ message DeleteWorkloadRequest { // Request for fetching a workload. message GetWorkloadRequest { - // Required. The resource name of the Workload to fetch. This is the workloads's + // Required. The resource name of the Workload to fetch. This is the workload's // relative path in the API, formatted as // "organizations/{organization_id}/locations/{location_id}/workloads/{workload_id}". // For example, @@ -227,7 +227,7 @@ message ListWorkloadsResponse { string next_page_token = 2; } -// An Workload object for managing highly regulated workloads of cloud +// A Workload object for managing highly regulated workloads of cloud // customers. message Workload { option (google.api.resource) = { @@ -302,11 +302,19 @@ message Workload { // International Traffic in Arms Regulations ITAR = 10; - // Assured Workloads for Partners; + // Assured Workloads for Australia Regions and Support controls + // Available for public preview consumption. + // Don't create production workloads. + AU_REGIONS_AND_US_SUPPORT = 11; + + // Assured Workloads for Partners ASSURED_WORKLOADS_FOR_PARTNERS = 12; } // Settings specific to the Key Management Service. + // This message is deprecated. + // In order to create a Keyring, callers should specify, + // ENCRYPTION_KEYS_PROJECT or KEYRING in ResourceSettings.resource_type field. message KMSSettings { option deprecated = true; @@ -338,7 +346,7 @@ message Workload { string resource_id = 1; // Indicates the type of resource. This field should be specified to - // correspond the id to the right project type (CONSUMER_PROJECT or + // correspond the id to the right resource type (CONSUMER_FOLDER or // ENCRYPTION_KEYS_PROJECT) ResourceInfo.ResourceType resource_type = 2; @@ -404,10 +412,10 @@ message Workload { // Supported Assured Workloads Partners. enum Partner { - // Unknown compliance regime. + // Unknown partner regime/controls. PARTNER_UNSPECIFIED = 0; - // S3NS regime + // S3NS regime/controls. LOCAL_CONTROLS_BY_S3NS = 1; } @@ -567,13 +575,17 @@ message AcknowledgeViolationRequest { // Required. Business justification explaining the need for violation acknowledgement string comment = 2 [(google.api.field_behavior) = REQUIRED]; - // Optional. Name of the OrgPolicy which was modified with non-compliant change and + // Optional. This field is deprecated and will be removed in future version of the API. + // Name of the OrgPolicy which was modified with non-compliant change and // resulted in this violation. // Format: // projects/{project_number}/policies/{constraint_name} // folders/{folder_id}/policies/{constraint_name} // organizations/{organization_id}/policies/{constraint_name} - string non_compliant_org_policy = 3 [(google.api.field_behavior) = OPTIONAL]; + string non_compliant_org_policy = 3 [ + deprecated = true, + (google.api.field_behavior) = OPTIONAL + ]; } // Response for violation acknowledgement @@ -795,4 +807,12 @@ message Violation { // Optional. Timestamp when this violation was acknowledged last. // This will be absent when acknowledged field is marked as false. optional google.protobuf.Timestamp acknowledgement_time = 15 [(google.api.field_behavior) = OPTIONAL]; + + // Output only. Immutable. Audit Log link to find business justification provided for violation + // exception. Format: + // https://console.cloud.google.com/logs/query;query={logName}{protoPayload.resourceName}{protoPayload.methodName}{timeRange}{organization} + string exception_audit_log_link = 16 [ + (google.api.field_behavior) = OUTPUT_ONLY, + (google.api.field_behavior) = IMMUTABLE + ]; } diff --git a/packages/google-cloud-assuredworkloads/protos/protos.d.ts b/packages/google-cloud-assuredworkloads/protos/protos.d.ts index 216d22a3be3..1b62e7e8887 100644 --- a/packages/google-cloud-assuredworkloads/protos/protos.d.ts +++ b/packages/google-cloud-assuredworkloads/protos/protos.d.ts @@ -1186,6 +1186,7 @@ export namespace google { EU_REGIONS_AND_SUPPORT = 8, CA_REGIONS_AND_SUPPORT = 9, ITAR = 10, + AU_REGIONS_AND_US_SUPPORT = 11, ASSURED_WORKLOADS_FOR_PARTNERS = 12 } @@ -2524,6 +2525,9 @@ export namespace google { /** Violation acknowledgementTime */ acknowledgementTime?: (google.protobuf.ITimestamp|null); + + /** Violation exceptionAuditLogLink */ + exceptionAuditLogLink?: (string|null); } /** Represents a Violation. */ @@ -2574,6 +2578,9 @@ export namespace google { /** Violation acknowledgementTime. */ public acknowledgementTime?: (google.protobuf.ITimestamp|null); + /** Violation exceptionAuditLogLink. */ + public exceptionAuditLogLink: string; + /** Violation _acknowledgementTime. */ public _acknowledgementTime?: "acknowledgementTime"; diff --git a/packages/google-cloud-assuredworkloads/protos/protos.js b/packages/google-cloud-assuredworkloads/protos/protos.js index c5f561685a8..8054368336d 100644 --- a/packages/google-cloud-assuredworkloads/protos/protos.js +++ b/packages/google-cloud-assuredworkloads/protos/protos.js @@ -2260,6 +2260,7 @@ case 8: case 9: case 10: + case 11: case 12: break; } @@ -2405,6 +2406,10 @@ case 10: message.complianceRegime = 10; break; + case "AU_REGIONS_AND_US_SUPPORT": + case 11: + message.complianceRegime = 11; + break; case "ASSURED_WORKLOADS_FOR_PARTNERS": case 12: message.complianceRegime = 12; @@ -2896,6 +2901,7 @@ * @property {number} EU_REGIONS_AND_SUPPORT=8 EU_REGIONS_AND_SUPPORT value * @property {number} CA_REGIONS_AND_SUPPORT=9 CA_REGIONS_AND_SUPPORT value * @property {number} ITAR=10 ITAR value + * @property {number} AU_REGIONS_AND_US_SUPPORT=11 AU_REGIONS_AND_US_SUPPORT value * @property {number} ASSURED_WORKLOADS_FOR_PARTNERS=12 ASSURED_WORKLOADS_FOR_PARTNERS value */ Workload.ComplianceRegime = (function() { @@ -2911,6 +2917,7 @@ values[valuesById[8] = "EU_REGIONS_AND_SUPPORT"] = 8; values[valuesById[9] = "CA_REGIONS_AND_SUPPORT"] = 9; values[valuesById[10] = "ITAR"] = 10; + values[valuesById[11] = "AU_REGIONS_AND_US_SUPPORT"] = 11; values[valuesById[12] = "ASSURED_WORKLOADS_FOR_PARTNERS"] = 12; return values; })(); @@ -4018,6 +4025,7 @@ case 8: case 9: case 10: + case 11: case 12: break; } @@ -4090,6 +4098,10 @@ case 10: message.complianceRegime = 10; break; + case "AU_REGIONS_AND_US_SUPPORT": + case 11: + message.complianceRegime = 11; + break; case "ASSURED_WORKLOADS_FOR_PARTNERS": case 12: message.complianceRegime = 12; @@ -6026,6 +6038,7 @@ * @property {google.cloud.assuredworkloads.v1.Violation.IRemediation|null} [remediation] Violation remediation * @property {boolean|null} [acknowledged] Violation acknowledged * @property {google.protobuf.ITimestamp|null} [acknowledgementTime] Violation acknowledgementTime + * @property {string|null} [exceptionAuditLogLink] Violation exceptionAuditLogLink */ /** @@ -6147,6 +6160,14 @@ */ Violation.prototype.acknowledgementTime = null; + /** + * Violation exceptionAuditLogLink. + * @member {string} exceptionAuditLogLink + * @memberof google.cloud.assuredworkloads.v1.Violation + * @instance + */ + Violation.prototype.exceptionAuditLogLink = ""; + // OneOf field names bound to virtual getters and setters var $oneOfFields; @@ -6211,6 +6232,8 @@ writer.uint32(/* id 14, wireType 0 =*/112).bool(message.acknowledged); if (message.acknowledgementTime != null && Object.hasOwnProperty.call(message, "acknowledgementTime")) $root.google.protobuf.Timestamp.encode(message.acknowledgementTime, writer.uint32(/* id 15, wireType 2 =*/122).fork()).ldelim(); + if (message.exceptionAuditLogLink != null && Object.hasOwnProperty.call(message, "exceptionAuditLogLink")) + writer.uint32(/* id 16, wireType 2 =*/130).string(message.exceptionAuditLogLink); return writer; }; @@ -6297,6 +6320,10 @@ message.acknowledgementTime = $root.google.protobuf.Timestamp.decode(reader, reader.uint32()); break; } + case 16: { + message.exceptionAuditLogLink = reader.string(); + break; + } default: reader.skipType(tag & 7); break; @@ -6392,6 +6419,9 @@ return "acknowledgementTime." + error; } } + if (message.exceptionAuditLogLink != null && message.hasOwnProperty("exceptionAuditLogLink")) + if (!$util.isString(message.exceptionAuditLogLink)) + return "exceptionAuditLogLink: string expected"; return null; }; @@ -6464,6 +6494,8 @@ throw TypeError(".google.cloud.assuredworkloads.v1.Violation.acknowledgementTime: object expected"); message.acknowledgementTime = $root.google.protobuf.Timestamp.fromObject(object.acknowledgementTime); } + if (object.exceptionAuditLogLink != null) + message.exceptionAuditLogLink = String(object.exceptionAuditLogLink); return message; }; @@ -6493,6 +6525,7 @@ object.nonCompliantOrgPolicy = ""; object.remediation = null; object.acknowledged = false; + object.exceptionAuditLogLink = ""; } if (message.name != null && message.hasOwnProperty("name")) object.name = message.name; @@ -6523,6 +6556,8 @@ if (options.oneofs) object._acknowledgementTime = "acknowledgementTime"; } + if (message.exceptionAuditLogLink != null && message.hasOwnProperty("exceptionAuditLogLink")) + object.exceptionAuditLogLink = message.exceptionAuditLogLink; return object; }; diff --git a/packages/google-cloud-assuredworkloads/protos/protos.json b/packages/google-cloud-assuredworkloads/protos/protos.json index 15959c0d268..611c5b7a873 100644 --- a/packages/google-cloud-assuredworkloads/protos/protos.json +++ b/packages/google-cloud-assuredworkloads/protos/protos.json @@ -446,6 +446,7 @@ "EU_REGIONS_AND_SUPPORT": 8, "CA_REGIONS_AND_SUPPORT": 9, "ITAR": 10, + "AU_REGIONS_AND_US_SUPPORT": 11, "ASSURED_WORKLOADS_FOR_PARTNERS": 12 } }, @@ -624,6 +625,7 @@ "type": "string", "id": 3, "options": { + "deprecated": true, "(google.api.field_behavior)": "OPTIONAL" } } @@ -813,6 +815,13 @@ "(google.api.field_behavior)": "OPTIONAL", "proto3_optional": true } + }, + "exceptionAuditLogLink": { + "type": "string", + "id": 16, + "options": { + "(google.api.field_behavior)": "IMMUTABLE" + } } }, "nested": { diff --git a/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.acknowledge_violation.js b/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.acknowledge_violation.js index a8477d7e8a3..8dda249ceaf 100644 --- a/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.acknowledge_violation.js +++ b/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.acknowledge_violation.js @@ -39,7 +39,8 @@ function main(name, comment) { */ // const comment = 'abc123' /** - * Optional. Name of the OrgPolicy which was modified with non-compliant change and + * Optional. This field is deprecated and will be removed in future version of the API. + * Name of the OrgPolicy which was modified with non-compliant change and * resulted in this violation. * Format: * projects/{project_number}/policies/{constraint_name} diff --git a/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.get_workload.js b/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.get_workload.js index f222a13cf60..a80589fcf5d 100644 --- a/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.get_workload.js +++ b/packages/google-cloud-assuredworkloads/samples/generated/v1/assured_workloads_service.get_workload.js @@ -29,7 +29,7 @@ function main(name) { * TODO(developer): Uncomment these variables before running the sample. */ /** - * Required. The resource name of the Workload to fetch. This is the workloads's + * Required. The resource name of the Workload to fetch. This is the workload's * relative path in the API, formatted as * "organizations/{organization_id}/locations/{location_id}/workloads/{workload_id}". * For example, diff --git a/packages/google-cloud-assuredworkloads/samples/generated/v1/snippet_metadata.google.cloud.assuredworkloads.v1.json b/packages/google-cloud-assuredworkloads/samples/generated/v1/snippet_metadata.google.cloud.assuredworkloads.v1.json index 6f03d5883d5..392c1e4a96c 100644 --- a/packages/google-cloud-assuredworkloads/samples/generated/v1/snippet_metadata.google.cloud.assuredworkloads.v1.json +++ b/packages/google-cloud-assuredworkloads/samples/generated/v1/snippet_metadata.google.cloud.assuredworkloads.v1.json @@ -390,7 +390,7 @@ "segments": [ { "start": 25, - "end": 69, + "end": 70, "type": "FULL" } ], diff --git a/packages/google-cloud-assuredworkloads/src/v1/assured_workloads_service_client.ts b/packages/google-cloud-assuredworkloads/src/v1/assured_workloads_service_client.ts index 146118be283..c53023ffcfb 100644 --- a/packages/google-cloud-assuredworkloads/src/v1/assured_workloads_service_client.ts +++ b/packages/google-cloud-assuredworkloads/src/v1/assured_workloads_service_client.ts @@ -721,7 +721,7 @@ export class AssuredWorkloadsServiceClient { * @param {Object} request * The request object that will be sent. * @param {string} request.name - * Required. The resource name of the Workload to fetch. This is the workloads's + * Required. The resource name of the Workload to fetch. This is the workload's * relative path in the API, formatted as * "organizations/{organization_id}/locations/{location_id}/workloads/{workload_id}". * For example, @@ -914,7 +914,8 @@ export class AssuredWorkloadsServiceClient { * @param {string} request.comment * Required. Business justification explaining the need for violation acknowledgement * @param {string} [request.nonCompliantOrgPolicy] - * Optional. Name of the OrgPolicy which was modified with non-compliant change and + * Optional. This field is deprecated and will be removed in future version of the API. + * Name of the OrgPolicy which was modified with non-compliant change and * resulted in this violation. * Format: * projects/{project_number}/policies/{constraint_name}