{ "version": "v1beta", "parameters": { "alt": { "enum": [ "json", "media", "proto" ], "description": "Data format for response.", "default": "json", "enumDescriptions": [ "Responses with Content-Type of application/json", "Media download with context-dependent Content-Type", "Responses with Content-Type of application/x-protobuf" ], "type": "string", "location": "query" }, "$.xgafv": { "enum": [ "1", "2" ], "type": "string", "location": "query", "description": "V1 error format.", "enumDescriptions": [ "v1 error format", "v2 error format" ] }, "oauth_token": { "type": "string", "location": "query", "description": "OAuth 2.0 token for the current user." }, "access_token": { "description": "OAuth access token.", "type": "string", "location": "query" }, "quotaUser": { "type": "string", "location": "query", "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters." }, "callback": { "description": "JSONP", "type": "string", "location": "query" }, "prettyPrint": { "description": "Returns response with indentations and line breaks.", "default": "true", "type": "boolean", "location": "query" }, "key": { "description": "API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token.", "type": "string", "location": "query" }, "fields": { "type": "string", "location": "query", "description": "Selector specifying which fields to include in a partial response." }, "upload_protocol": { "description": "Upload protocol for media (e.g. \"raw\", \"multipart\").", "type": "string", "location": "query" }, "uploadType": { "description": "Legacy upload protocol for media (e.g. \"media\", \"multipart\").", "type": "string", "location": "query" } }, "ownerDomain": "google.com", "kind": "discovery#restDescription", "auth": { "oauth2": { "scopes": { "https://www.googleapis.com/auth/cloud-platform": { "description": "See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account." } } } }, "description": "Provides insights about your customers and their Assured Workloads based on your Sovereign Controls by Partners offering.", "name": "cloudcontrolspartner", "id": "cloudcontrolspartner:v1beta", "canonicalName": "Cloud Controls Partner Service", "revision": "20260422", "schemas": { "Violation": { "id": "Violation", "description": "Details of resource Violation", "type": "object", "properties": { "beginTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. Time of the event which triggered the Violation.", "type": "string" }, "state": { "enum": [ "STATE_UNSPECIFIED", "RESOLVED", "UNRESOLVED", "EXCEPTION" ], "type": "string", "description": "Output only. State of the violation", "enumDescriptions": [ "Unspecified state.", "Violation is resolved.", "Violation is Unresolved", "Violation is Exception" ], "readOnly": true }, "name": { "type": "string", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/violations/{violation}`" }, "updateTime": { "description": "Output only. The last time when the Violation record was updated.", "type": "string", "readOnly": true, "format": "google-datetime" }, "nonCompliantOrgPolicy": { "readOnly": true, "type": "string", "description": "Output only. Immutable. Name of the OrgPolicy which was modified with non-compliant change and resulted this violation. Format: `projects/{project_number}/policies/{constraint_name}` `folders/{folder_id}/policies/{constraint_name}` `organizations/{organization_id}/policies/{constraint_name}`" }, "description": { "description": "Output only. Description for the Violation. e.g. OrgPolicy gcp.resourceLocations has non compliant value.", "type": "string", "readOnly": true }, "resolveTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. Time of the event which fixed the Violation. If the violation is ACTIVE this will be empty.", "type": "string" }, "category": { "readOnly": true, "type": "string", "description": "Output only. Category under which this violation is mapped. e.g. Location, Service Usage, Access, Encryption, etc." }, "folderId": { "format": "int64", "type": "string", "description": "The folder_id of the violation" }, "remediation": { "description": "Output only. Compliance violation remediation", "readOnly": true, "$ref": "Remediation" } } }, "Gcloud": { "type": "object", "id": "Gcloud", "description": "Remediation instructions to resolve violation via gcloud cli", "properties": { "additionalLinks": { "type": "array", "items": { "type": "string" }, "description": "Additional urls for more information about steps" }, "gcloudCommands": { "type": "array", "items": { "type": "string" }, "description": "Gcloud command to resolve violation" }, "steps": { "description": "Steps to resolve violation via gcloud cli", "type": "array", "items": { "type": "string" } } } }, "Sku": { "id": "Sku", "description": "Represents the SKU a partner owns inside Google Cloud to sell to customers.", "type": "object", "properties": { "displayName": { "description": "Display name of the product identified by the SKU. A partner may want to show partner branded names for their offerings such as local sovereign cloud solutions.", "type": "string" }, "id": { "description": "Argentum product SKU, that is associated with the partner offerings to customers used by Syntro for billing purposes. SKUs can represent resold Google products or support services.", "type": "string" } } }, "ListViolationsResponse": { "properties": { "violations": { "description": "List of violation", "type": "array", "items": { "$ref": "Violation" } }, "unreachable": { "description": "Workloads that could not be reached due to permission errors or any other error. Ref: https://google.aip.dev/217", "type": "array", "items": { "type": "string" } }, "nextPageToken": { "type": "string", "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages." } }, "id": "ListViolationsResponse", "description": "Response message for list customer violation requests", "type": "object" }, "Console": { "properties": { "additionalLinks": { "type": "array", "items": { "type": "string" }, "description": "Additional urls for more information about steps" }, "consoleUris": { "type": "array", "items": { "type": "string" }, "description": "Link to console page where violations can be resolved" }, "steps": { "type": "array", "items": { "type": "string" }, "description": "Steps to resolve violation via cloud console" } }, "id": "Console", "description": "Remediation instructions to resolve violation via cloud console", "type": "object" }, "Customer": { "type": "object", "id": "Customer", "description": "Contains metadata around a Cloud Controls Partner Customer", "properties": { "displayName": { "description": "Required. Display name for the customer", "type": "string" }, "name": { "type": "string", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}`" }, "customerOnboardingState": { "description": "Output only. Container for customer onboarding steps", "readOnly": true, "$ref": "CustomerOnboardingState" }, "isOnboarded": { "readOnly": true, "description": "Output only. Indicates whether a customer is fully onboarded", "type": "boolean" }, "organizationDomain": { "readOnly": true, "description": "Output only. The customer organization domain, extracted from CRM Organization’s display_name field. e.g. \"google.com\"", "type": "string" } } }, "CustomerOnboardingStep": { "properties": { "step": { "enum": [ "STEP_UNSPECIFIED", "KAJ_ENROLLMENT", "CUSTOMER_ENVIRONMENT" ], "description": "The onboarding step", "enumDescriptions": [ "Unspecified step", "KAJ Enrollment", "Customer Environment" ], "type": "string" }, "completionTime": { "type": "string", "description": "The completion time of the onboarding step", "format": "google-datetime" }, "completionState": { "enum": [ "COMPLETION_STATE_UNSPECIFIED", "PENDING", "SUCCEEDED", "FAILED", "NOT_APPLICABLE" ], "type": "string", "description": "Output only. Current state of the step", "enumDescriptions": [ "Unspecified completion state.", "Task started (has start date) but not yet completed.", "Succeeded state.", "Failed state.", "Not applicable state." ], "readOnly": true }, "startTime": { "description": "The starting time of the onboarding step", "type": "string", "format": "google-datetime" } }, "id": "CustomerOnboardingStep", "description": "Container for customer onboarding information", "type": "object" }, "Partner": { "properties": { "skus": { "description": "List of SKUs the partner is offering", "type": "array", "items": { "$ref": "Sku" } }, "createTime": { "description": "Output only. Time the resource was created", "type": "string", "readOnly": true, "format": "google-datetime" }, "name": { "type": "string", "description": "Identifier. The resource name of the partner. Format: `organizations/{organization}/locations/{location}/partner` Example: \"organizations/123456/locations/us-central1/partner\"" }, "updateTime": { "readOnly": true, "format": "google-datetime", "description": "Output only. The last time the resource was updated", "type": "string" }, "ekmSolutions": { "type": "array", "items": { "$ref": "EkmMetadata" }, "description": "List of Google Cloud supported EKM partners supported by the partner" }, "operatedCloudRegions": { "description": "List of Google Cloud regions that the partner sells services to customers. Valid Google Cloud regions found here: https://cloud.google.com/compute/docs/regions-zones", "type": "array", "items": { "type": "string" } }, "partnerProjectId": { "type": "string", "description": "Google Cloud project ID in the partner's Google Cloud organization for receiving enhanced Logs for Partners." } }, "type": "object", "id": "Partner", "description": "Message describing Partner resource" }, "WorkloadOnboardingStep": { "properties": { "startTime": { "type": "string", "description": "The starting time of the onboarding step.", "format": "google-datetime" }, "completionTime": { "type": "string", "description": "The completion time of the onboarding step.", "format": "google-datetime" }, "completionState": { "readOnly": true, "description": "Output only. The completion state of the onboarding step.", "enumDescriptions": [ "Unspecified completion state.", "Task started (has start date) but not yet completed.", "Succeeded state.", "Failed state.", "Not applicable state." ], "type": "string", "enum": [ "COMPLETION_STATE_UNSPECIFIED", "PENDING", "SUCCEEDED", "FAILED", "NOT_APPLICABLE" ] }, "step": { "enum": [ "STEP_UNSPECIFIED", "EKM_PROVISIONED", "SIGNED_ACCESS_APPROVAL_CONFIGURED" ], "type": "string", "description": "The onboarding step.", "enumDescriptions": [ "Unspecified step.", "EKM Provisioned step.", "Signed Access Approval step." ] } }, "type": "object", "id": "WorkloadOnboardingStep", "description": "Container for workload onboarding information." }, "CustomerOnboardingState": { "type": "object", "id": "CustomerOnboardingState", "description": "Container for customer onboarding steps", "properties": { "onboardingSteps": { "type": "array", "items": { "$ref": "CustomerOnboardingStep" }, "description": "List of customer onboarding steps" } } }, "AccessReason": { "type": "object", "id": "AccessReason", "description": "Reason for the access.", "properties": { "type": { "description": "Type of access justification.", "enumDescriptions": [ "Default value for proto, shouldn't be used.", "Customer made a request or raised an issue that required the principal to access customer data. `detail` is of the form (\"#####\" is the issue ID): - \"Feedback Report: #####\" - \"Case Number: #####\" - \"Case ID: #####\" - \"E-PIN Reference: #####\" - \"Google-#####\" - \"T-#####\"", "The principal accessed customer data in order to diagnose or resolve a suspected issue in services. Often this access is used to confirm that customers are not affected by a suspected service issue or to remediate a reversible system issue.", "Google initiated service for security, fraud, abuse, or compliance purposes.", "The principal was compelled to access customer data in order to respond to a legal third party data request or process, including legal processes from customers themselves.", "The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage.", "Similar to 'GOOGLE_INITIATED_SERVICE' or 'GOOGLE_INITIATED_REVIEW', but with universe agnostic naming. The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage, or for security, fraud, abuse, or compliance review purposes." ], "type": "string", "enum": [ "TYPE_UNSPECIFIED", "CUSTOMER_INITIATED_SUPPORT", "GOOGLE_INITIATED_SERVICE", "GOOGLE_INITIATED_REVIEW", "THIRD_PARTY_DATA_REQUEST", "GOOGLE_RESPONSE_TO_PRODUCTION_ALERT", "CLOUD_INITIATED_ACCESS" ] }, "detail": { "type": "string", "description": "More detail about certain reason types. See comments for each type above." } } }, "Empty": { "id": "Empty", "description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }", "type": "object", "properties": {} }, "Instructions": { "type": "object", "id": "Instructions", "description": "Instructions to remediate violation", "properties": { "gcloudInstructions": { "description": "Remediation instructions to resolve violation via gcloud cli", "$ref": "Gcloud" }, "consoleInstructions": { "description": "Remediation instructions to resolve violation via cloud console", "$ref": "Console" } } }, "Remediation": { "properties": { "compliantValues": { "description": "Values that can resolve the violation For example: for list org policy violations, this will either be the list of allowed or denied values", "type": "array", "items": { "type": "string" } }, "remediationType": { "readOnly": true, "enum": [ "REMEDIATION_TYPE_UNSPECIFIED", "REMEDIATION_BOOLEAN_ORG_POLICY_VIOLATION", "REMEDIATION_LIST_ALLOWED_VALUES_ORG_POLICY_VIOLATION", "REMEDIATION_LIST_DENIED_VALUES_ORG_POLICY_VIOLATION", "REMEDIATION_RESTRICT_CMEK_CRYPTO_KEY_PROJECTS_ORG_POLICY_VIOLATION", "REMEDIATION_RESOURCE_VIOLATION" ], "description": "Output only. Remediation type based on the type of org policy values violated", "enumDescriptions": [ "Unspecified remediation type", "Remediation type for boolean org policy", "Remediation type for list org policy which have allowed values in the monitoring rule", "Remediation type for list org policy which have denied values in the monitoring rule", "Remediation type for gcp.restrictCmekCryptoKeyProjects", "Remediation type for resource violation." ], "type": "string" }, "instructions": { "description": "Required. Remediation instructions to resolve violations", "$ref": "Instructions" } }, "id": "Remediation", "description": "Represents remediation guidance to resolve compliance violation for AssuredWorkload", "type": "object" }, "ListAccessApprovalRequestsResponse": { "properties": { "unreachable": { "type": "array", "items": { "type": "string" }, "description": "Locations that could not be reached." }, "accessApprovalRequests": { "type": "array", "items": { "$ref": "AccessApprovalRequest" }, "description": "List of access approval requests" }, "nextPageToken": { "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages.", "type": "string" } }, "type": "object", "id": "ListAccessApprovalRequestsResponse", "description": "Response message for list access requests." }, "Workload": { "id": "Workload", "description": "Contains metadata around the [Workload resource](https://cloud.google.com/assured-workloads/docs/reference/rest/Shared.Types/Workload) in the Assured Workloads API.", "type": "object", "properties": { "isOnboarded": { "description": "Indicates whether a workload is fully onboarded.", "type": "boolean" }, "partner": { "description": "Partner associated with this workload.", "enumDescriptions": [ "Unknown Partner.", "Enum representing S3NS (Thales) partner.", "Enum representing T_SYSTEM (TSI) partner.", "Enum representing SIA_MINSAIT (Indra) partner.", "Enum representing PSN (TIM) partner.", "Enum representing CNTXT (Kingdom of Saudi Arabia) partner.", "Enum representing CNXT (Kingdom of Saudi Arabia) partner offering without EKM provisioning.", "Enum representing Telefonica (Spain) partner." ], "type": "string", "enum": [ "PARTNER_UNSPECIFIED", "PARTNER_LOCAL_CONTROLS_BY_S3NS", "PARTNER_SOVEREIGN_CONTROLS_BY_T_SYSTEMS", "PARTNER_SOVEREIGN_CONTROLS_BY_SIA_MINSAIT", "PARTNER_SOVEREIGN_CONTROLS_BY_PSN", "PARTNER_SOVEREIGN_CONTROLS_BY_CNTXT", "PARTNER_SOVEREIGN_CONTROLS_BY_CNTXT_NO_EKM", "PARTNER_SPAIN_DATA_BOUNDARY_BY_TELEFONICA" ] }, "createTime": { "description": "Output only. Time the resource was created.", "type": "string", "readOnly": true, "format": "google-datetime" }, "folderId": { "readOnly": true, "format": "int64", "description": "Output only. Folder id this workload is associated with", "type": "string" }, "folder": { "description": "Output only. The name of container folder of the assured workload", "type": "string", "readOnly": true }, "workloadOnboardingState": { "description": "Container for workload onboarding steps.", "$ref": "WorkloadOnboardingState" }, "keyManagementProjectId": { "type": "string", "description": "The project id of the key management project for the workload" }, "name": { "type": "string", "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`" }, "location": { "type": "string", "description": "The Google Cloud location of the workload" } } }, "ListWorkloadsResponse": { "id": "ListWorkloadsResponse", "description": "Response message for list customer workloads requests.", "type": "object", "properties": { "nextPageToken": { "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages.", "type": "string" }, "workloads": { "description": "List of customer workloads", "type": "array", "items": { "$ref": "Workload" } }, "unreachable": { "description": "Locations that could not be reached.", "type": "array", "items": { "type": "string" } } } }, "PartnerPermissions": { "properties": { "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/partnerPermissions`", "type": "string" }, "partnerPermissions": { "description": "The partner permissions granted for the workload", "type": "array", "items": { "type": "string", "enumDescriptions": [ "Unspecified partner permission", "Permission for Access Transparency and emergency logs", "Permission for Assured Workloads monitoring violations", "Permission for Access Approval requests", "Permission for External Key Manager connection status", "Permission for support case details for Access Transparency log entries" ], "enum": [ "PERMISSION_UNSPECIFIED", "ACCESS_TRANSPARENCY_AND_EMERGENCY_ACCESS_LOGS", "ASSURED_WORKLOADS_MONITORING", "ACCESS_APPROVAL_REQUESTS", "ASSURED_WORKLOADS_EKM_CONNECTION_STATUS", "ACCESS_TRANSPARENCY_LOGS_SUPPORT_CASE_VIEWER" ] } } }, "id": "PartnerPermissions", "description": "The permissions granted to the partner for a workload", "type": "object" }, "EkmMetadata": { "id": "EkmMetadata", "description": "Holds information needed by Mudbray to use partner EKMs for workloads.", "type": "object", "properties": { "ekmSolution": { "enumDeprecated": [ false, false, false, false, true ], "enum": [ "EKM_SOLUTION_UNSPECIFIED", "FORTANIX", "FUTUREX", "THALES", "VIRTRU" ], "type": "string", "description": "The Cloud EKM partner.", "enumDescriptions": [ "Unspecified EKM solution", "EKM Partner Fortanix", "EKM Partner FutureX", "EKM Partner Thales", "This enum value is never used." ] }, "ekmEndpointUri": { "type": "string", "description": "Endpoint for sending requests to the EKM for key provisioning during Assured Workload creation." } } }, "ListCustomersResponse": { "type": "object", "id": "ListCustomersResponse", "description": "Response message for list customer Customers requests", "properties": { "customers": { "description": "List of customers", "type": "array", "items": { "$ref": "Customer" } }, "nextPageToken": { "description": "A token that can be sent as `page_token` to retrieve the next page. If this field is omitted, there are no subsequent pages.", "type": "string" }, "unreachable": { "type": "array", "items": { "type": "string" }, "description": "Locations that could not be reached." } } }, "EkmConnection": { "id": "EkmConnection", "description": "Details about the EKM connection", "type": "object", "properties": { "connectionName": { "type": "string", "description": "Resource name of the EKM connection in the format: projects/{project}/locations/{location}/ekmConnections/{ekm_connection}" }, "connectionState": { "description": "Output only. The connection state", "enumDescriptions": [ "Unspecified EKM connection state", "Available EKM connection state", "Not available EKM connection state", "Error EKM connection state", "Permission denied EKM connection state" ], "type": "string", "enum": [ "CONNECTION_STATE_UNSPECIFIED", "AVAILABLE", "NOT_AVAILABLE", "ERROR", "PERMISSION_DENIED" ], "readOnly": true }, "connectionError": { "description": "The connection error that occurred if any", "$ref": "ConnectionError" } } }, "WorkloadOnboardingState": { "id": "WorkloadOnboardingState", "description": "Container for workload onboarding steps.", "type": "object", "properties": { "onboardingSteps": { "description": "List of workload onboarding steps.", "type": "array", "items": { "$ref": "WorkloadOnboardingStep" } } } }, "OperationMetadata": { "properties": { "requestedCancellation": { "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have been cancelled successfully have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.", "type": "boolean", "readOnly": true }, "createTime": { "description": "Output only. The time the operation was created.", "type": "string", "readOnly": true, "format": "google-datetime" }, "target": { "readOnly": true, "type": "string", "description": "Output only. Server-defined resource path for the target of the operation." }, "verb": { "type": "string", "description": "Output only. Name of the verb executed by the operation.", "readOnly": true }, "apiVersion": { "description": "Output only. API version used to start the operation.", "type": "string", "readOnly": true }, "endTime": { "type": "string", "description": "Output only. The time the operation finished running.", "format": "google-datetime", "readOnly": true }, "statusMessage": { "type": "string", "description": "Output only. Human-readable status of the operation, if any.", "readOnly": true } }, "type": "object", "id": "OperationMetadata", "description": "Represents the metadata of the long-running operation." }, "AccessApprovalRequest": { "id": "AccessApprovalRequest", "description": "Details about the Access request.", "type": "object", "properties": { "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/accessApprovalRequests/{access_approval_request}`", "type": "string" }, "requestTime": { "type": "string", "description": "The time at which approval was requested.", "format": "google-datetime" }, "requestedExpirationTime": { "type": "string", "description": "The requested expiration for the approval. If the request is approved, access will be granted from the time of approval until the expiration time.", "format": "google-datetime" }, "requestedReason": { "description": "The justification for which approval is being requested.", "$ref": "AccessReason" } } }, "ConnectionError": { "type": "object", "id": "ConnectionError", "description": "Information around the error that occurred if the connection state is anything other than available or unspecified", "properties": { "errorDomain": { "description": "The error domain for the error", "type": "string" }, "errorMessage": { "description": "The error message for the error", "type": "string" } } }, "EkmConnections": { "id": "EkmConnections", "description": "The EKM connections associated with a workload", "type": "object", "properties": { "name": { "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/ekmConnections`", "type": "string" }, "ekmConnections": { "description": "The EKM connections associated with the workload", "type": "array", "items": { "$ref": "EkmConnection" } } } } }, "discoveryVersion": "v1", "protocol": "rest", "batchPath": "batch", "ownerName": "Google", "documentationLink": "https://cloud.google.com/sovereign-controls-by-partners/docs/sovereign-partners/reference/rest", "resources": { "organizations": { "resources": { "locations": { "methods": { "getPartner": { "parameterOrder": [ "name" ], "id": "cloudcontrolspartner.organizations.locations.getPartner", "response": { "$ref": "Partner" }, "description": "Get details of a Partner.", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/partner", "parameters": { "name": { "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/partner$", "location": "path", "type": "string", "description": "Required. Format: `organizations/{organization}/locations/{location}/partner`" } }, "path": "v1beta/{+name}", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] } }, "resources": { "customers": { "resources": { "workloads": { "resources": { "accessApprovalRequests": { "methods": { "list": { "id": "cloudcontrolspartner.organizations.locations.customers.workloads.accessApprovalRequests.list", "parameterOrder": [ "parent" ], "deprecated": true, "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/accessApprovalRequests", "parameters": { "orderBy": { "description": "Optional. Hint for how to order the results.", "location": "query", "type": "string" }, "parent": { "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "location": "path", "type": "string", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$", "required": true }, "pageSize": { "location": "query", "type": "integer", "description": "Optional. The maximum number of access requests to return. The service may return fewer than this value. If unspecified, at most 500 access requests will be returned.", "format": "int32" }, "pageToken": { "location": "query", "type": "string", "description": "Optional. A page token, received from a previous `ListAccessApprovalRequests` call. Provide this to retrieve the subsequent page." }, "filter": { "location": "query", "type": "string", "description": "Optional. Filtering results." } }, "response": { "$ref": "ListAccessApprovalRequestsResponse" }, "description": "Deprecated: Only returns access approval requests directly associated with an assured workload folder.", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+parent}/accessApprovalRequests" } }, "deprecated": true }, "violations": { "methods": { "list": { "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+parent}/violations", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/violations", "parameters": { "pageToken": { "location": "query", "type": "string", "description": "Optional. A page token, received from a previous `ListViolations` call. Provide this to retrieve the subsequent page." }, "interval.startTime": { "format": "google-datetime", "location": "query", "type": "string", "description": "Optional. Inclusive start of the interval. If specified, a Timestamp matching this interval will have to be the same or after the start." }, "interval.endTime": { "format": "google-datetime", "location": "query", "type": "string", "description": "Optional. Exclusive end of the interval. If specified, a Timestamp matching this interval will have to be before the end." }, "filter": { "location": "query", "type": "string", "description": "Optional. Filtering results" }, "orderBy": { "location": "query", "type": "string", "description": "Optional. Hint for how to order the results" }, "parent": { "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$", "description": "Required. Parent resource Format `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "location": "path", "type": "string" }, "pageSize": { "description": "Optional. The maximum number of customers row to return. The service may return fewer than this value. If unspecified, at most 10 customers will be returned.", "location": "query", "type": "integer", "format": "int32" } }, "response": { "$ref": "ListViolationsResponse" }, "description": "Lists Violations for a workload Callers may also choose to read across multiple Customers or for a single customer as per [AIP-159](https://google.aip.dev/159) by using '-' (the hyphen or dash character) as a wildcard character instead of {customer} & {workload}. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.violations.list", "parameterOrder": [ "parent" ] }, "get": { "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+name}", "response": { "$ref": "Violation" }, "description": "Gets details of a single Violation.", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/violations/{violationsId}", "parameters": { "name": { "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/violations/{violation}`", "location": "path", "type": "string", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/violations/[^/]+$" } }, "id": "cloudcontrolspartner.organizations.locations.customers.workloads.violations.get", "parameterOrder": [ "name" ] } } } }, "methods": { "getEkmConnections": { "parameterOrder": [ "name" ], "id": "cloudcontrolspartner.organizations.locations.customers.workloads.getEkmConnections", "response": { "$ref": "EkmConnections" }, "description": "Gets the EKM connections associated with a workload", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/ekmConnections", "parameters": { "name": { "location": "path", "type": "string", "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/ekmConnections`", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/ekmConnections$" } }, "path": "v1beta/{+name}", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "get": { "id": "cloudcontrolspartner.organizations.locations.customers.workloads.get", "parameterOrder": [ "name" ], "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}", "parameters": { "name": { "location": "path", "type": "string", "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}`", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+$" } }, "response": { "$ref": "Workload" }, "description": "Gets details of a single workload", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+name}" }, "getPartnerPermissions": { "path": "v1beta/{+name}", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "parameterOrder": [ "name" ], "id": "cloudcontrolspartner.organizations.locations.customers.workloads.getPartnerPermissions", "response": { "$ref": "PartnerPermissions" }, "description": "Gets the partner permissions granted for a workload", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads/{workloadsId}/partnerPermissions", "parameters": { "name": { "description": "Required. Name of the resource to get in the format: `organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/partnerPermissions`", "location": "path", "type": "string", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+/workloads/[^/]+/partnerPermissions$" } } }, "list": { "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}/workloads", "parameters": { "filter": { "description": "Optional. Filtering results.", "location": "query", "type": "string" }, "pageToken": { "description": "A page token, received from a previous `ListWorkloads` call. Provide this to retrieve the subsequent page.", "location": "query", "type": "string" }, "parent": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}/customers/{customer}`", "location": "path", "type": "string" }, "pageSize": { "location": "query", "type": "integer", "description": "The maximum number of workloads to return. The service may return fewer than this value. If unspecified, at most 500 workloads will be returned.", "format": "int32" }, "orderBy": { "description": "Optional. Hint for how to order the results.", "location": "query", "type": "string" } }, "response": { "$ref": "ListWorkloadsResponse" }, "description": "Lists customer workloads for a given customer org id", "id": "cloudcontrolspartner.organizations.locations.customers.workloads.list", "parameterOrder": [ "parent" ], "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+parent}/workloads" } } } }, "methods": { "patch": { "path": "v1beta/{+name}", "httpMethod": "PATCH", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "request": { "$ref": "Customer" }, "response": { "$ref": "Customer" }, "description": "Update details of a single customer", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "parameters": { "name": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "description": "Identifier. Format: `organizations/{organization}/locations/{location}/customers/{customer}`", "location": "path", "type": "string" }, "updateMask": { "format": "google-fieldmask", "location": "query", "type": "string", "description": "Optional. The list of fields to update" } }, "parameterOrder": [ "name" ], "id": "cloudcontrolspartner.organizations.locations.customers.patch" }, "list": { "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+parent}/customers", "id": "cloudcontrolspartner.organizations.locations.customers.list", "parameterOrder": [ "parent" ], "response": { "$ref": "ListCustomersResponse" }, "description": "Lists customers of a partner identified by its Google Cloud organization ID", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers", "parameters": { "parent": { "pattern": "^organizations/[^/]+/locations/[^/]+$", "required": true, "location": "path", "type": "string", "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}`" }, "pageSize": { "description": "The maximum number of Customers to return. The service may return fewer than this value. If unspecified, at most 500 Customers will be returned.", "location": "query", "type": "integer", "format": "int32" }, "orderBy": { "description": "Optional. Hint for how to order the results", "location": "query", "type": "string" }, "filter": { "location": "query", "type": "string", "description": "Optional. Filtering results" }, "pageToken": { "description": "A page token, received from a previous `ListCustomers` call. Provide this to retrieve the subsequent page.", "location": "query", "type": "string" } } }, "get": { "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "parameters": { "name": { "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true, "location": "path", "type": "string", "description": "Required. Format: `organizations/{organization}/locations/{location}/customers/{customer}`" } }, "response": { "$ref": "Customer" }, "description": "Gets details of a single customer", "parameterOrder": [ "name" ], "id": "cloudcontrolspartner.organizations.locations.customers.get", "path": "v1beta/{+name}", "httpMethod": "GET", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ] }, "create": { "httpMethod": "POST", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+parent}/customers", "id": "cloudcontrolspartner.organizations.locations.customers.create", "parameterOrder": [ "parent" ], "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers", "parameters": { "parent": { "location": "path", "type": "string", "description": "Required. Parent resource Format: `organizations/{organization}/locations/{location}`", "required": true, "pattern": "^organizations/[^/]+/locations/[^/]+$" }, "customerId": { "location": "query", "type": "string", "description": "Required. The customer id to use for the customer, which will become the final component of the customer's resource name. The specified value must be a valid Google cloud organization id." } }, "response": { "$ref": "Customer" }, "description": "Creates a new customer.", "request": { "$ref": "Customer" } }, "delete": { "httpMethod": "DELETE", "scopes": [ "https://www.googleapis.com/auth/cloud-platform" ], "path": "v1beta/{+name}", "flatPath": "v1beta/organizations/{organizationsId}/locations/{locationsId}/customers/{customersId}", "parameters": { "name": { "location": "path", "type": "string", "description": "Required. name of the resource to be deleted format: name=organizations/*/locations/*/customers/*", "pattern": "^organizations/[^/]+/locations/[^/]+/customers/[^/]+$", "required": true } }, "response": { "$ref": "Empty" }, "description": "Delete details of a single customer", "id": "cloudcontrolspartner.organizations.locations.customers.delete", "parameterOrder": [ "name" ] } } } } } } } }, "version_module": true, "icons": { "x16": "http://www.google.com/images/icons/product/search-16.gif", "x32": "http://www.google.com/images/icons/product/search-32.gif" }, "basePath": "", "rootUrl": "https://cloudcontrolspartner.googleapis.com/", "title": "Cloud Controls Partner API", "baseUrl": "https://cloudcontrolspartner.googleapis.com/", "fullyEncodeReservedExpansion": true, "mtlsRootUrl": "https://cloudcontrolspartner.mtls.googleapis.com/", "servicePath": "" }