{ "ownerName": "Google", "revision": "20260422", "version": "v1beta", "baseUrl": "https://cloudcontrolspartner.googleapis.com/", "name": "cloudcontrolspartner", "mtlsRootUrl": "https://cloudcontrolspartner.mtls.googleapis.com/", "description": "Provides insights about your customers and their Assured Workloads based on your Sovereign Controls by Partners offering.", "auth": { "oauth2": { "scopes": { "https://www.googleapis.com/auth/cloud-platform": { "description": "See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account." } } } }, "protocol": "rest", "fullyEncodeReservedExpansion": true, "schemas": { "Instructions": { "description": "Instructions to remediate violation", "id": "Instructions", "type": "object", "properties": { "gcloudInstructions": { "description": "Remediation instructions to resolve violation via gcloud cli", "$ref": "Gcloud" }, "consoleInstructions": { "$ref": "Console", "description": "Remediation instructions to resolve violation via cloud console" } } }, "ListViolationsResponse": { "id": "ListViolationsResponse", "type": "object", "description": "Response message for list customer violation requests", "properties": { "violations": { "description": "List of violation", "type": "array", "items": { "$ref": "Violation" } }, "unreachable": { "items": { "type": "string" }, "type": "array", "description": "Workloads that could not be reached due to permission errors or any other error. Ref: https://google.aip.dev/217" }, "nextPageToken": { "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages.", "type": "string" } } }, "Empty": { "properties": {}, "description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }", "id": "Empty", "type": "object" }, "Workload": { "description": "Contains metadata around the [Workload resource](https://cloud.google.com/assured-workloads/docs/reference/rest/Shared.Types/Workload) in the Assured Workloads API.", "id": "Workload", "type": "object", "properties": { "createTime": { "description": "Output only. Time the resource was created.", "readOnly": true, "type": "string", "format": "google-datetime" }, "location": { "type": "string", "description": "The Google Cloud location of the workload" }, "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "type": "string" }, "keyManagementProjectId": { "type": "string", "description": "The project id of the key management project for the workload" }, "partner": { "description": "Partner associated with this workload.", "type": "string", "enum": [ "PARTNER_UNSPECIFIED", "PARTNER_LOCAL_CONTROLS_BY_S3NS", "PARTNER_SOVEREIGN_CONTROLS_BY_T_SYSTEMS", "PARTNER_SOVEREIGN_CONTROLS_BY_SIA_MINSAIT", "PARTNER_SOVEREIGN_CONTROLS_BY_PSN", "PARTNER_SOVEREIGN_CONTROLS_BY_CNTXT", "PARTNER_SOVEREIGN_CONTROLS_BY_CNTXT_NO_EKM", "PARTNER_SPAIN_DATA_BOUNDARY_BY_TELEFONICA" ], "enumDescriptions": [ "Unknown Partner.", "Enum representing S3NS (Thales) partner.", "Enum representing T_SYSTEM (TSI) partner.", "Enum representing SIA_MINSAIT (Indra) partner.", "Enum representing PSN (TIM) partner.", "Enum representing CNTXT (Kingdom of Saudi Arabia) partner.", "Enum representing CNXT (Kingdom of Saudi Arabia) partner offering without EKM provisioning.", "Enum representing Telefonica (Spain) partner." ] }, "folder": { "description": "Output only. The name of container folder of the assured workload", "readOnly": true, "type": "string" }, "workloadOnboardingState": { "description": "Container for workload onboarding steps.", "$ref": "WorkloadOnboardingState" }, "isOnboarded": { "type": "boolean", "description": "Indicates whether a workload is fully onboarded." }, "folderId": { "type": "string", "format": "int64", "description": "Output only. Folder id this workload is associated with", "readOnly": true } } }, "Violation": { "properties": { "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/violations/{violation}`", "type": "string" }, "resolveTime": { "description": "Output only. Time of the event which fixed the Violation. If the violation is ACTIVE this will be empty.", "readOnly": true, "type": "string", "format": "google-datetime" }, "nonCompliantOrgPolicy": { "type": "string", "description": "Output only. Immutable. Name of the OrgPolicy which was modified with non-compliant change and resulted this violation. Format: `projects/{project_number}/policies/{constraint_name}` `folders/{folder_id}/policies/{constraint_name}` `organizations/{organization_id}/policies/{constraint_name}`", "readOnly": true }, "beginTime": { "description": "Output only. Time of the event which triggered the Violation.", "readOnly": true, "type": "string", "format": "google-datetime" }, "category": { "type": "string", "description": "Output only. Category under which this violation is mapped. e.g. Location, Service Usage, Access, Encryption, etc.", "readOnly": true }, "description": { "type": "string", "description": "Output only. Description for the Violation. e.g. OrgPolicy gcp.resourceLocations has non compliant value.", "readOnly": true }, "updateTime": { "description": "Output only. The last time when the Violation record was updated.", "readOnly": true, "type": "string", "format": "google-datetime" }, "state": { "type": "string", "readOnly": true, "enumDescriptions": [ "Unspecified state.", "Violation is resolved.", "Violation is Unresolved", "Violation is Exception" ], "enum": [ "STATE_UNSPECIFIED", "RESOLVED", "UNRESOLVED", "EXCEPTION" ], "description": "Output only. State of the violation" }, "folderId": { "type": "string", "format": "int64", "description": "The folder_id of the violation" }, "remediation": { "description": "Output only. Compliance violation remediation", "readOnly": true, "$ref": "Remediation" } }, "description": "Details of resource Violation", "id": "Violation", "type": "object" }, "Remediation": { "id": "Remediation", "type": "object", "description": "Represents remediation guidance to resolve compliance violation for AssuredWorkload", "properties": { "instructions": { "description": "Required. Remediation instructions to resolve violations", "$ref": "Instructions" }, "compliantValues": { "items": { "type": "string" }, "type": "array", "description": "Values that can resolve the violation For example: for list org policy violations, this will either be the list of allowed or denied values" }, "remediationType": { "type": "string", "readOnly": true, "enumDescriptions": [ "Unspecified remediation type", "Remediation type for boolean org policy", "Remediation type for list org policy which have allowed values in the monitoring rule", "Remediation type for list org policy which have denied values in the monitoring rule", "Remediation type for gcp.restrictCmekCryptoKeyProjects", "Remediation type for resource violation." ], "enum": [ "REMEDIATION_TYPE_UNSPECIFIED", "REMEDIATION_BOOLEAN_ORG_POLICY_VIOLATION", "REMEDIATION_LIST_ALLOWED_VALUES_ORG_POLICY_VIOLATION", "REMEDIATION_LIST_DENIED_VALUES_ORG_POLICY_VIOLATION", "REMEDIATION_RESTRICT_CMEK_CRYPTO_KEY_PROJECTS_ORG_POLICY_VIOLATION", "REMEDIATION_RESOURCE_VIOLATION" ], "description": "Output only. Remediation type based on the type of org policy values violated" } } }, "AccessReason": { "description": "Reason for the access.", "id": "AccessReason", "type": "object", "properties": { "type": { "type": "string", "enum": [ "TYPE_UNSPECIFIED", "CUSTOMER_INITIATED_SUPPORT", "GOOGLE_INITIATED_SERVICE", "GOOGLE_INITIATED_REVIEW", "THIRD_PARTY_DATA_REQUEST", "GOOGLE_RESPONSE_TO_PRODUCTION_ALERT", "CLOUD_INITIATED_ACCESS" ], "description": "Type of access justification.", "enumDescriptions": [ "Default value for proto, shouldn't be used.", "Customer made a request or raised an issue that required the principal to access customer data. `detail` is of the form (\"#####\" is the issue ID): - \"Feedback Report: #####\" - \"Case Number: #####\" - \"Case ID: #####\" - \"E-PIN Reference: #####\" - \"Google-#####\" - \"T-#####\"", "The principal accessed customer data in order to diagnose or resolve a suspected issue in services. Often this access is used to confirm that customers are not affected by a suspected service issue or to remediate a reversible system issue.", "Google initiated service for security, fraud, abuse, or compliance purposes.", "The principal was compelled to access customer data in order to respond to a legal third party data request or process, including legal processes from customers themselves.", "The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage.", "Similar to 'GOOGLE_INITIATED_SERVICE' or 'GOOGLE_INITIATED_REVIEW', but with universe agnostic naming. The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage, or for security, fraud, abuse, or compliance review purposes." ] }, "detail": { "description": "More detail about certain reason types. See comments for each type above.", "type": "string" } } }, "Customer": { "id": "Customer", "type": "object", "description": "Contains metadata around a Cloud Controls Partner Customer", "properties": { "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}`", "type": "string" }, "displayName": { "description": "Required. Display name for the customer", "type": "string" }, "organizationDomain": { "description": "Output only. The customer organization domain, extracted from CRM Organization’s display_name field. e.g. \"google.com\"", "readOnly": true, "type": "string" }, "customerOnboardingState": { "$ref": "CustomerOnboardingState", "description": "Output only. Container for customer onboarding steps", "readOnly": true }, "isOnboarded": { "description": "Output only. Indicates whether a customer is fully onboarded", "readOnly": true, "type": "boolean" } } }, "AccessApprovalRequest": { "description": "Details about the Access request.", "id": "AccessApprovalRequest", "type": "object", "properties": { "requestTime": { "description": "The time at which approval was requested.", "type": "string", "format": "google-datetime" }, "requestedReason": { "description": "The justification for which approval is being requested.", "$ref": "AccessReason" }, "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/accessApprovalRequests/{access_approval_request}`", "type": "string" }, "requestedExpirationTime": { "type": "string", "format": "google-datetime", "description": "The requested expiration for the approval. If the request is approved, access will be granted from the time of approval until the expiration time." } } }, "ListWorkloadsResponse": { "properties": { "workloads": { "type": "array", "description": "List of customer workloads", "items": { "$ref": "Workload" } }, "nextPageToken": { "type": "string", "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages." }, "unreachable": { "type": "array", "description": "Locations that could not be reached.", "items": { "type": "string" } } }, "description": "Response message for list customer workloads requests.", "id": "ListWorkloadsResponse", "type": "object" }, "CustomerOnboardingState": { "description": "Container for customer onboarding steps", "id": "CustomerOnboardingState", "type": "object", "properties": { "onboardingSteps": { "type": "array", "description": "List of customer onboarding steps", "items": { "$ref": "CustomerOnboardingStep" } } } }, "Console": { "properties": { "consoleUris": { "description": "Link to console page where violations can be resolved", "type": "array", "items": { "type": "string" } }, "additionalLinks": { "items": { "type": "string" }, "type": "array", "description": "Additional urls for more information about steps" }, "steps": { "items": { "type": "string" }, "description": "Steps to resolve violation via cloud console", "type": "array" } }, "description": "Remediation instructions to resolve violation via cloud console", "id": "Console", "type": "object" }, "WorkloadOnboardingStep": { "properties": { "step": { "description": "The onboarding step.", "type": "string", "enum": [ "STEP_UNSPECIFIED", "EKM_PROVISIONED", "SIGNED_ACCESS_APPROVAL_CONFIGURED" ], "enumDescriptions": [ "Unspecified step.", "EKM Provisioned step.", "Signed Access Approval step." ] }, "startTime": { "type": "string", "format": "google-datetime", "description": "The starting time of the onboarding step." }, "completionState": { "enumDescriptions": [ "Unspecified completion state.", "Task started (has start date) but not yet completed.", "Succeeded state.", "Failed state.", "Not applicable state." ], "description": "Output only. The completion state of the onboarding step.", "enum": [ "COMPLETION_STATE_UNSPECIFIED", "PENDING", "SUCCEEDED", "FAILED", "NOT_APPLICABLE" ], "readOnly": true, "type": "string" }, "completionTime": { "type": "string", "format": "google-datetime", "description": "The completion time of the onboarding step." } }, "id": "WorkloadOnboardingStep", "type": "object", "description": "Container for workload onboarding information." }, "Partner": { "properties": { "createTime": { "description": "Output only. Time the resource was created", "readOnly": true, "type": "string", "format": "google-datetime" }, "name": { "description": "Identifier. The resource name of the partner. Format: `organizations/{organization}/locations/{location}/partner` Example: \"organizations/123456/locations/us-central1/partner\"", "type": "string" }, "partnerProjectId": { "type": "string", "description": "Google Cloud project ID in the partner's Google Cloud organization for receiving enhanced Logs for Partners." }, "ekmSolutions": { "items": { "$ref": "EkmMetadata" }, "description": "List of Google Cloud supported EKM partners supported by the partner", "type": "array" }, "skus": { "type": "array", "description": "List of SKUs the partner is offering", "items": { "$ref": "Sku" } }, "operatedCloudRegions": { "items": { "type": "string" }, "type": "array", "description": "List of Google Cloud regions that the partner sells services to customers. Valid Google Cloud regions found here: https://cloud.google.com/compute/docs/regions-zones" }, "updateTime": { "description": "Output only. The last time the resource was updated", "readOnly": true, "type": "string", "format": "google-datetime" } }, "id": "Partner", "type": "object", "description": "Message describing Partner resource" }, "ListAccessApprovalRequestsResponse": { "description": "Response message for list access requests.", "id": "ListAccessApprovalRequestsResponse", "type": "object", "properties": { "accessApprovalRequests": { "items": { "$ref": "AccessApprovalRequest" }, "type": "array", "description": "List of access approval requests" }, "nextPageToken": { "type": "string", "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages." }, "unreachable": { "items": { "type": "string" }, "description": "Locations that could not be reached.", "type": "array" } } }, "Gcloud": { "properties": { "steps": { "description": "Steps to resolve violation via gcloud cli", "type": "array", "items": { "type": "string" } }, "gcloudCommands": { "type": "array", "description": "Gcloud command to resolve violation", "items": { "type": "string" } }, "additionalLinks": { "items": { "type": "string" }, "type": "array", "description": "Additional urls for more information about steps" } }, "description": "Remediation instructions to resolve violation via gcloud cli", "id": "Gcloud", "type": "object" }, "WorkloadOnboardingState": { "description": "Container for workload onboarding steps.", "id": "WorkloadOnboardingState", "type": "object", "properties": { "onboardingSteps": { "description": "List of workload onboarding steps.", "type": "array", "items": { "$ref": "WorkloadOnboardingStep" } } } }, "OperationMetadata": { "description": "Represents the metadata of the long-running operation.", "id": "OperationMetadata", "type": "object", "properties": { "statusMessage": { "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true, "type": "string" }, "apiVersion": { "description": "Output only. API version used to start the operation.", "readOnly": true, "type": "string" }, "target": { "type": "string", "description": "Output only. Server-defined resource path for the target of the operation.", "readOnly": true }, "createTime": { "description": "Output only. The time the operation was created.", "readOnly": true, "type": "string", "format": "google-datetime" }, "endTime": { "description": "Output only. The time the operation finished running.", "readOnly": true, "type": "string", "format": "google-datetime" }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "requestedCancellation": { "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have been cancelled successfully have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "readOnly": true, "type": "boolean" } } }, "PartnerPermissions": { "properties": { "partnerPermissions": { "items": { "type": "string", "enum": [ "PERMISSION_UNSPECIFIED", "ACCESS_TRANSPARENCY_AND_EMERGENCY_ACCESS_LOGS", "ASSURED_WORKLOADS_MONITORING", "ACCESS_APPROVAL_REQUESTS", "ASSURED_WORKLOADS_EKM_CONNECTION_STATUS", "ACCESS_TRANSPARENCY_LOGS_SUPPORT_CASE_VIEWER" ], "enumDescriptions": [ "Unspecified partner permission", "Permission for Access Transparency and emergency logs", "Permission for Assured Workloads monitoring violations", "Permission for Access Approval requests", "Permission for External Key Manager connection status", "Permission for support case details for Access Transparency log entries" ] }, "type": "array", "description": "The partner permissions granted for the workload" }, "name": { "type": "string", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/partnerPermissions`" } }, "id": "PartnerPermissions", "type": "object", "description": "The permissions granted to the partner for a workload" }, "ListCustomersResponse": { "properties": { "unreachable": { "items": { "type": "string" }, "description": "Locations that could not be reached.", "type": "array" }, "customers": { "type": "array", "description": "List of customers", "items": { "$ref": "Customer" } }, "nextPageToken": { "type": "string", "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages." } }, "id": "ListCustomersResponse", "type": "object", "description": "Response message for list customer Customers requests" }, "ConnectionError": { "properties": { "errorDomain": { "description": "The error domain for the error", "type": "string" }, "errorMessage": { "description": "The error message for the error", "type": "string" } }, "description": "Information around the error that occurred if the connection state is anything other than available or unspecified", "id": "ConnectionError", "type": "object" }, "CustomerOnboardingStep": { "id": "CustomerOnboardingStep", "type": "object", "description": "Container for customer onboarding information", "properties": { "startTime": { "description": "The starting time of the onboarding step", "type": "string", "format": "google-datetime" }, "completionState": { "readOnly": true, "type": "string", "description": "Output only. Current state of the step", "enum": [ "COMPLETION_STATE_UNSPECIFIED", "PENDING", "SUCCEEDED", "FAILED", "NOT_APPLICABLE" ], "enumDescriptions": [ "Unspecified completion state.", "Task started (has start date) but not yet completed.", "Succeeded state.", "Failed state.", "Not applicable state." ] }, "completionTime": { "description": "The completion time of the onboarding step", "type": "string", "format": "google-datetime" }, "step": { "enumDescriptions": [ "Unspecified step", "KAJ Enrollment", "Customer Environment" ], "description": "The onboarding step", "type": "string", "enum": [ "STEP_UNSPECIFIED", "KAJ_ENROLLMENT", "CUSTOMER_ENVIRONMENT" ] } } }, "EkmConnections": { "description": "The EKM connections associated with a workload", "id": "EkmConnections", "type": "object", "properties": { "name": { "type": "string", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/ekmConnections`" }, "ekmConnections": { "items": { "$ref": "EkmConnection" }, "type": "array", "description": "The EKM connections associated with the workload" } } }, "Sku": { "properties": { "id": { "type": "string", "description": "Argentum product SKU, that is associated with the partner offerings to customers used by Syntro for billing purposes. SKUs can represent resold Google products or support services." }, "displayName": { "type": "string", "description": "Display name of the product identified by the SKU. A partner may want to show partner branded names for their offerings such as local sovereign cloud solutions." } }, "description": "Represents the SKU a partner owns inside Google Cloud to sell to customers.", "id": "Sku", "type": "object" }, "EkmConnection": { "id": "EkmConnection", "type": "object", "description": "Details about the EKM connection", "properties": { "connectionError": { "description": "The connection error that occurred if any", "$ref": "ConnectionError" }, "connectionState": { "type": "string", "readOnly": true, "enumDescriptions": [ "Unspecified EKM connection state", "Available EKM connection state", "Not available EKM connection state", "Error EKM connection state", "Permission denied EKM connection state" ], "enum": [ "CONNECTION_STATE_UNSPECIFIED", "AVAILABLE", "NOT_AVAILABLE", "ERROR", "PERMISSION_DENIED" ], "description": "Output only. The connection state" }, "connectionName": { "type": "string", "description": "Resource name of the EKM connection in the format: projects/{project}/locations/{location}/ekmConnections/{ekm_connection}" } } }, "EkmMetadata": { "description": "Holds information needed by Mudbray to use partner EKMs for workloads.", "id": "EkmMetadata", "type": "object", "properties": { "ekmSolution": { "enum": [ "EKM_SOLUTION_UNSPECIFIED", "FORTANIX", "FUTUREX", "THALES", "VIRTRU" ], "description": "The Cloud EKM partner.", "enumDescriptions": [ "Unspecified EKM solution", "EKM Partner Fortanix", "EKM Partner FutureX", "EKM Partner Thales", "This enum value is never used." ], "type": "string", "enumDeprecated": [ false, false, false, false, true ] }, "ekmEndpointUri": { "type": "string", "description": "Endpoint for sending requests to the EKM for key provisioning during Assured Workload creation." } } } }, "ownerDomain": "google.com", "basePath": "", "canonicalName": "Cloud Controls Partner Service", "title": "Cloud Controls Partner API", "parameters": { "alt": { "description": "Data format for response.", "enum": [ "json", "media", "proto" ], "enumDescriptions": [ "Responses with Content-Type of application/json", "Media download with context-dependent Content-Type", "Responses with Content-Type of application/x-protobuf" ], "location": "query", "type": "string", "default": "json" }, "callback": { "type": "string", "description": "JSONP", "location": "query" }, "access_token": { "description": "OAuth access token.", "type": "string", "location": "query" }, "$.xgafv": { "type": "string", "enum": [ "1", "2" ], "description": "V1 error format.", "enumDescriptions": [ "v1 error format", "v2 error format" ], "location": "query" }, "oauth_token": { "type": "string", "description": "OAuth 2.0 token for the current user.", "location": "query" }, "uploadType": { "location": "query", "type": "string", "description": "Legacy upload protocol for media (e.g. \"media\", \"multipart\")." }, "fields": { "type": "string", "description": "Selector specifying which fields to include in a partial response.", "location": "query" }, "prettyPrint": { "location": "query", "description": "Returns response with indentations and line breaks.", "type": "boolean", "default": "true" }, "quotaUser": { "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters.", "type": "string", "location": "query" }, "key": { "description": "API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token.", "type": "string", "location": "query" }, "upload_protocol": { "description": "Upload protocol for media (e.g. \"raw\", \"multipart\").", "type": "string", "location": "query" } }, "rootUrl": "https://cloudcontrolspartner.googleapis.com/", "resources": { "organizations": { "resources": { "locations": { "methods": { "getPartner": { "description": "Get details of a Partner.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "name": { "description": "Required. Format: `organizations/{organization}/locations/{location}/partner`", "location": "path", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/partner$", "required": true } }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/partner", "id": "cloudcontrolspartner.organizations.locations.getPartner", "httpMethod": "GET", "response": { "$ref": "Partner" }, "path": "v1beta/{+name}", "parameterOrder": [ "name" ] } }, "resources": { "customers": { "methods": { "get": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "name": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}`", "location": "path" } }, "description": "Gets details of a single customer", "httpMethod": "GET", "response": { "$ref": "Customer" }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "id": "cloudcontrolspartner.organizations.locations.customers.get", "parameterOrder": [ "name" ], "path": "v1beta/{+name}" }, "create": { "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers", "id": "cloudcontrolspartner.organizations.locations.customers.create", "httpMethod": "POST", "response": { "$ref": "Customer" }, "path": "v1beta/{+parent}/customers", "parameterOrder": [ "parent" ], "request": { "$ref": "Customer" }, "description": "Creates a new customer.", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "parent": { "location": "path", "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}`", "pattern": "^organizations/[^/]+/locations/[^/]+$", "required": true, "type": "string" }, "customerId": { "description": "Required. The customer id to use for the customer, which will become the final component of the customer's resource name. The specified value must be a valid Google cloud organization id.", "type": "string", "location": "query" } } }, "patch": { "request": { "$ref": "Customer" }, "description": "Update details of a single customer", "parameters": { "updateMask": { "type": "string", "format": "google-fieldmask", "description": "Optional. The list of fields to update", "location": "query" }, "name": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "type": "string", "location": "path", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}`" } }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "id": "cloudcontrolspartner.organizations.locations.customers.patch", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "response": { "$ref": "Customer" }, "httpMethod": "PATCH", "path": "v1beta/{+name}", "parameterOrder": [ "name" ] }, "list": { "response": { "$ref": "ListCustomersResponse" }, "httpMethod": "GET", "id": "cloudcontrolspartner.organizations.locations.customers.list", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers", "parameterOrder": [ "parent" ], "path": "v1beta/{+parent}/customers", "parameters": { "pageSize": { "location": "query", "type": "integer", "format": "int32", "description": "The maximum number of Customers to return. The service may return fewer than this value. If unspecified, at most 500 Customers will be returned." }, "filter": { "location": "query", "type": "string", "description": "Optional. Filtering results" }, "parent": { "location": "path", "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}`", "pattern": "^organizations/[^/]+/locations/[^/]+$", "required": true, "type": "string" }, "pageToken": { "description": "A page token, received from a previous `ListCustomers` call. Provide this to retrieve the subsequent page.", "type": "string", "location": "query" }, "orderBy": { "location": "query", "description": "Optional. Hint for how to order the results", "type": "string" } }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "description": "Lists customers of a partner identified by its Google Cloud organization ID" }, "delete": { "httpMethod": "DELETE", "response": { "$ref": "Empty" }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "id": "cloudcontrolspartner.organizations.locations.customers.delete", "parameterOrder": [ "name" ], "path": "v1beta/{+name}", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "name": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "description": "Required. name of the resource to be deleted format: name=organizations/*/locations/*/customers/*", "location": "path" } }, "description": "Delete details of a single customer" } }, "resources": { "workloads": { "methods": { "get": { "description": "Gets details of a single workload", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "name": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$", "required": true, "type": "string", "location": "path", "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`" } }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.get", "httpMethod": "GET", "response": { "$ref": "Workload" }, "path": "v1beta/{+name}", "parameterOrder": [ "name" ] }, "getEkmConnections": { "id": "cloudcontrolspartner.organizations.locations.customers.workloads.getEkmConnections", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/ekmConnections", "response": { "$ref": "EkmConnections" }, "httpMethod": "GET", "path": "v1beta/{+name}", "parameterOrder": [ "name" ], "description": "Gets the EKM connections associated with a workload", "parameters": { "name": { "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/ekmConnections`", "location": "path", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/ekmConnections$", "required": true } }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "list": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "pageToken": { "location": "query", "type": "string", "description": "A page token, received from a previous `ListWorkloads` call. Provide this to retrieve the subsequent page." }, "orderBy": { "location": "query", "description": "Optional. Hint for how to order the results.", "type": "string" }, "parent": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "type": "string", "location": "path", "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}/customers/{customer}`" }, "pageSize": { "type": "integer", "format": "int32", "description": "The maximum number of workloads to return. The service may return fewer than this value. If unspecified, at most 500 workloads will be returned.", "location": "query" }, "filter": { "location": "query", "type": "string", "description": "Optional. Filtering results." } }, "description": "Lists customer workloads for a given customer org id", "httpMethod": "GET", "response": { "$ref": "ListWorkloadsResponse" }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.list", "parameterOrder": [ "parent" ], "path": "v1beta/{+parent}/workloads" }, "getPartnerPermissions": { "parameterOrder": [ "name" ], "path": "v1beta/{+name}", "response": { "$ref": "PartnerPermissions" }, "httpMethod": "GET", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.getPartnerPermissions", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/partnerPermissions", "parameters": { "name": { "location": "path", "description": "Required. Name of the resource to get in the format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/partnerPermissions`", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/partnerPermissions$", "required": true, "type": "string" } }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "description": "Gets the partner permissions granted for a workload" } }, "resources": { "accessApprovalRequests": { "methods": { "list": { "response": { "$ref": "ListAccessApprovalRequestsResponse" }, "httpMethod": "GET", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.accessApprovalRequests.list", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/accessApprovalRequests", "parameterOrder": [ "parent" ], "deprecated": true, "path": "v1beta/{+parent}/accessApprovalRequests", "parameters": { "pageSize": { "location": "query", "type": "integer", "format": "int32", "description": "Optional. The maximum number of access requests to return. The service may return fewer than this value. If unspecified, at most 500 access requests will be returned." }, "filter": { "location": "query", "description": "Optional. Filtering results.", "type": "string" }, "parent": { "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$", "required": true, "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "location": "path" }, "orderBy": { "type": "string", "description": "Optional. Hint for how to order the results.", "location": "query" }, "pageToken": { "location": "query", "description": "Optional. A page token, received from a previous `ListAccessApprovalRequests` call. Provide this to retrieve the subsequent page.", "type": "string" } }, "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "description": "Deprecated: Only returns access approval requests directly associated with an assured workload folder." } }, "deprecated": true }, "violations": { "methods": { "get": { "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "name": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/violations/[^/]+$", "required": true, "type": "string", "location": "path", "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/violations/{violation}`" } }, "description": "Gets details of a single Violation.", "parameterOrder": [ "name" ], "path": "v1beta/{+name}", "httpMethod": "GET", "response": { "$ref": "Violation" }, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/violations/{violationsId}", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.violations.get" }, "list": { "path": "v1beta/{+parent}/violations", "parameterOrder": [ "parent" ], "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/violations", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.violations.list", "httpMethod": "GET", "response": { "$ref": "ListViolationsResponse" }, "description": "Lists Violations for a workload Callers may also choose to read across multiple Customers or for a single customer as per [AIP-159](https://google.aip.dev/159) by using '-' (the hyphen or dash character) as a wildcard character instead of {customer} & {workload}. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameters": { "pageToken": { "description": "Optional. A page token, received from a previous `ListViolations` call. Provide this to retrieve the subsequent page.", "type": "string", "location": "query" }, "interval.endTime": { "location": "query", "description": "Optional. Exclusive end of the interval. If specified, a Timestamp matching this interval will have to be before the end.", "type": "string", "format": "google-datetime" }, "orderBy": { "type": "string", "description": "Optional. Hint for how to order the results", "location": "query" }, "parent": { "location": "path", "description": "Required. Parent resource Format `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$", "required": true, "type": "string" }, "interval.startTime": { "location": "query", "type": "string", "format": "google-datetime", "description": "Optional. Inclusive start of the interval. If specified, a Timestamp matching this interval will have to be the same or after the start." }, "pageSize": { "location": "query", "description": "Optional. The maximum number of customers row to return. The service may return fewer than this value. If unspecified, at most 10 customers will be returned.", "type": "integer", "format": "int32" }, "filter": { "type": "string", "description": "Optional. Filtering results", "location": "query" } } } } } } } } } } } } } }, "icons": { "x16": "http://www.google.com/images/icons/product/search-16.gif", "x32": "http://www.google.com/images/icons/product/search-32.gif" }, "batchPath": "batch", "id": "cloudcontrolspartner:v1beta", "version_module": true, "kind": "discovery#restDescription", "discoveryVersion": "v1", "servicePath": "", "documentationLink": "https://cloud.google.com/sovereign-controls-by-partners/docs/sovereign-partners/reference/rest" }