googleapis

/// <reference types="node" /> import { OAuth2Client, JWT, Compute, UserRefreshClient, BaseExternalAccountClient, GaxiosPromise, GoogleConfigurable, MethodOptions, StreamMethodOptions, GlobalOptions, GoogleAuth, BodyResponseCallback, APIRequestContext } from 'googleapis-common'; import { Readable } from 'stream'; export declare namespace servicenetworking_v1beta { export interface Options extends GlobalOptions { version: 'v1beta'; } interface StandardParameters { /** * Auth client or API Key for the request */ auth?: string | OAuth2Client | JWT | Compute | UserRefreshClient | BaseExternalAccountClient | GoogleAuth; /** * V1 error format. */ '$.xgafv'?: string; /** * OAuth access token. */ access_token?: string; /** * Data format for response. */ alt?: string; /** * JSONP */ callback?: string; /** * Selector specifying which fields to include in a partial response. */ fields?: string; /** * API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */ key?: string; /** * OAuth 2.0 token for the current user. */ oauth_token?: string; /** * Returns response with indentations and line breaks. */ prettyPrint?: boolean; /** * Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */ quotaUser?: string; /** * Legacy upload protocol for media (e.g. "media", "multipart"). */ uploadType?: string; /** * Upload protocol for media (e.g. "raw", "multipart"). */ upload_protocol?: string; } /** * Service Networking API * * Provides automatic management of network configurations necessary for certain services. * * @example * ```js * const {google} = require('googleapis'); * const servicenetworking = google.servicenetworking('v1beta'); * ``` */ export class Servicenetworking { context: APIRequestContext; operations: Resource$Operations; services: Resource$Services; constructor(options: GlobalOptions, google?: GoogleConfigurable); } /** * Metadata provided through GetOperation request for the LRO generated by AddDnsRecordSet API */ export interface Schema$AddDnsRecordSetMetadata { } /** * Metadata provided through GetOperation request for the LRO generated by AddDnsZone API */ export interface Schema$AddDnsZoneMetadata { } /** * Represents managed DNS zones created in the shared producer host and consumer projects. */ export interface Schema$AddDnsZoneResponse { /** * The DNS peering zone created in the consumer project. */ consumerPeeringZone?: Schema$DnsZone; /** * The private DNS zone created in the shared producer host project. */ producerPrivateZone?: Schema$DnsZone; } /** * Metadata provided through GetOperation request for the LRO generated by AddRoles API */ export interface Schema$AddRolesMetadata { } /** * Represents IAM roles added to the shared VPC host project. */ export interface Schema$AddRolesResponse { /** * Required. List of policy bindings that were added to the shared VPC host project. */ policyBinding?: Schema$PolicyBinding[]; } /** * Request to create a subnetwork in a previously peered service network. */ export interface Schema$AddSubnetworkRequest { /** * Required. A resource that represents the service consumer, such as `projects/123456`. The project number can be different from the value in the consumer network parameter. For example, the network might be part of a Shared VPC network. In those cases, Service Networking validates that this resource belongs to that Shared VPC. */ consumer?: string | null; /** * Required. The name of the service consumer's VPC network. The network must have an existing private connection that was provisioned through the connections.create method. The name must be in the following format: `projects/{project\}/global/networks/{network\}`, where {project\} is a project number, such as `12345`. {network\} is the name of a VPC network in the project. */ consumerNetwork?: string | null; /** * An optional description of the subnet. */ description?: string | null; /** * Required. The prefix length of the subnet's IP address range. Use CIDR range notation, such as `30` to provision a subnet with an `x.x.x.x/30` CIDR range. The IP address range is drawn from a pool of available ranges in the service consumer's allocated range. */ ipPrefixLength?: number | null; /** * Required. The name of a [region](/compute/docs/regions-zones) for the subnet, such `europe-west1`. */ region?: string | null; /** * Optional. The starting address of a range. The address must be a valid IPv4 address in the x.x.x.x format. This value combined with the IP prefix range is the CIDR range for the subnet. The range must be within the allocated range that is assigned to the private connection. If the CIDR range isn't available, the call fails. */ requestedAddress?: string | null; /** * Required. A name for the new subnet. For information about the naming requirements, see [subnetwork](/compute/docs/reference/rest/v1/subnetworks) in the Compute API documentation. */ subnetwork?: string | null; /** * A list of members that are granted the `compute.networkUser` role on the subnet. */ subnetworkUsers?: string[] | null; } /** * Api is a light-weight descriptor for an API Interface. Interfaces are also described as "protocol buffer services" in some contexts, such as by the "service" keyword in a .proto file, but they are different from API Services, which represent a concrete implementation of an interface as opposed to simply a description of methods and bindings. They are also sometimes simply referred to as "APIs" in other contexts, such as the name of this message itself. See https://cloud.google.com/apis/design/glossary for detailed terminology. */ export interface Schema$Api { /** * The methods of this interface, in unspecified order. */ methods?: Schema$Method[]; /** * Included interfaces. See Mixin. */ mixins?: Schema$Mixin[]; /** * The fully qualified name of this interface, including package name followed by the interface's simple name. */ name?: string | null; /** * Any metadata attached to the interface. */ options?: Schema$Option[]; /** * Source context for the protocol buffer service represented by this message. */ sourceContext?: Schema$SourceContext; /** * The source syntax of the service. */ syntax?: string | null; /** * A version string for this interface. If specified, must have the form `major-version.minor-version`, as in `1.10`. If the minor version is omitted, it defaults to zero. If the entire version field is empty, the major version is derived from the package name, as outlined below. If the field is not empty, the version in the package name will be verified to be consistent with what is provided here. The versioning schema uses [semantic versioning](http://semver.org) where the major version number indicates a breaking change and the minor version an additive, non-breaking change. Both version numbers are signals to users what to expect from different versions, and should be carefully chosen based on the product plan. The major version is also reflected in the package name of the interface, which must end in `v`, as in `google.feature.v1`. For major versions 0 and 1, the suffix can be omitted. Zero major versions must only be used for experimental, non-GA interfaces. */ version?: string | null; } /** * `Authentication` defines the authentication configuration for an API. Example for an API targeted for external use: name: calendar.googleapis.com authentication: providers: - id: google_calendar_auth jwks_uri: https://www.googleapis.com/oauth2/v1/certs issuer: https://securetoken.google.com rules: - selector: "*" requirements: provider_id: google_calendar_auth */ export interface Schema$Authentication { /** * Defines a set of authentication providers that a service supports. */ providers?: Schema$AuthProvider[]; /** * A list of authentication rules that apply to individual API methods. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$AuthenticationRule[]; } /** * Authentication rules for the service. By default, if a method has any authentication requirements, every request must include a valid credential matching one of the requirements. It's an error to include more than one kind of credential in a single request. If a method doesn't have any auth requirements, request credentials will be ignored. */ export interface Schema$AuthenticationRule { /** * If true, the service accepts API keys without any other credential. This flag only applies to HTTP and gRPC requests. */ allowWithoutCredential?: boolean | null; /** * The requirements for OAuth credentials. */ oauth?: Schema$OAuthRequirements; /** * Requirements for additional authentication providers. */ requirements?: Schema$AuthRequirement[]; /** * Selects the methods to which this rule applies. Refer to selector for syntax details. */ selector?: string | null; } /** * Configuration for an authentication provider, including support for [JSON Web Token (JWT)](https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32). */ export interface Schema$AuthProvider { /** * The list of JWT [audiences](https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32#section-4.1.3). that are allowed to access. A JWT containing any of these audiences will be accepted. When this setting is absent, JWTs with audiences: - "https://[service.name]/[google.protobuf.Api.name]" - "https://[service.name]/" will be accepted. For example, if no audiences are in the setting, LibraryService API will accept JWTs with the following audiences: - https://library-example.googleapis.com/google.example.library.v1.LibraryService - https://library-example.googleapis.com/ Example: audiences: bookstore_android.apps.googleusercontent.com, bookstore_web.apps.googleusercontent.com */ audiences?: string | null; /** * Redirect URL if JWT token is required but not present or is expired. Implement authorizationUrl of securityDefinitions in OpenAPI spec. */ authorizationUrl?: string | null; /** * The unique identifier of the auth provider. It will be referred to by `AuthRequirement.provider_id`. Example: "bookstore_auth". */ id?: string | null; /** * Identifies the principal that issued the JWT. See https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32#section-4.1.1 Usually a URL or an email address. Example: https://securetoken.google.com Example: 1234567-compute@developer.gserviceaccount.com */ issuer?: string | null; /** * URL of the provider's public key set to validate signature of the JWT. See [OpenID Discovery](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata). Optional if the key set document: - can be retrieved from [OpenID Discovery](https://openid.net/specs/openid-connect-discovery-1_0.html) of the issuer. - can be inferred from the email domain of the issuer (e.g. a Google service account). Example: https://www.googleapis.com/oauth2/v1/certs */ jwksUri?: string | null; /** * Defines the locations to extract the JWT. JWT locations can be either from HTTP headers or URL query parameters. The rule is that the first match wins. The checking order is: checking all headers first, then URL query parameters. If not specified, default to use following 3 locations: 1) Authorization: Bearer 2) x-goog-iap-jwt-assertion 3) access_token query parameter Default locations can be specified as followings: jwt_locations: - header: Authorization value_prefix: "Bearer " - header: x-goog-iap-jwt-assertion - query: access_token */ jwtLocations?: Schema$JwtLocation[]; } /** * User-defined authentication requirements, including support for [JSON Web Token (JWT)](https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32). */ export interface Schema$AuthRequirement { /** * NOTE: This will be deprecated soon, once AuthProvider.audiences is implemented and accepted in all the runtime components. The list of JWT [audiences](https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32#section-4.1.3). that are allowed to access. A JWT containing any of these audiences will be accepted. When this setting is absent, only JWTs with audience "https://Service_name/API_name" will be accepted. For example, if no audiences are in the setting, LibraryService API will only accept JWTs with the following audience "https://library-example.googleapis.com/google.example.library.v1.LibraryService". Example: audiences: bookstore_android.apps.googleusercontent.com, bookstore_web.apps.googleusercontent.com */ audiences?: string | null; /** * id from authentication provider. Example: provider_id: bookstore_auth */ providerId?: string | null; } /** * `Backend` defines the backend configuration for a service. */ export interface Schema$Backend { /** * A list of API backend rules that apply to individual API methods. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$BackendRule[]; } /** * A backend rule provides configuration for an individual API element. */ export interface Schema$BackendRule { /** * The address of the API backend. The scheme is used to determine the backend protocol and security. The following schemes are accepted: SCHEME PROTOCOL SECURITY http:// HTTP None https:// HTTP TLS grpc:// gRPC None grpcs:// gRPC TLS It is recommended to explicitly include a scheme. Leaving out the scheme may cause constrasting behaviors across platforms. If the port is unspecified, the default is: - 80 for schemes without TLS - 443 for schemes with TLS For HTTP backends, use protocol to specify the protocol version. */ address?: string | null; /** * The number of seconds to wait for a response from a request. The default varies based on the request protocol and deployment environment. */ deadline?: number | null; /** * When disable_auth is true, a JWT ID token won't be generated and the original "Authorization" HTTP header will be preserved. If the header is used to carry the original token and is expected by the backend, this field must be set to true to preserve the header. */ disableAuth?: boolean | null; /** * The JWT audience is used when generating a JWT ID token for the backend. This ID token will be added in the HTTP "authorization" header, and sent to the backend. */ jwtAudience?: string | null; /** * Minimum deadline in seconds needed for this method. Calls having deadline value lower than this will be rejected. */ minDeadline?: number | null; /** * The number of seconds to wait for the completion of a long running operation. The default is no deadline. */ operationDeadline?: number | null; pathTranslation?: string | null; /** * The protocol used for sending a request to the backend. The supported values are "http/1.1" and "h2". The default value is inferred from the scheme in the address field: SCHEME PROTOCOL http:// http/1.1 https:// http/1.1 grpc:// h2 grpcs:// h2 For secure HTTP backends (https://) that support HTTP/2, set this field to "h2" for improved performance. Configuring this field to non-default values is only supported for secure HTTP backends. This field will be ignored for all other backends. See https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#alpn-protocol-ids for more details on the supported values. */ protocol?: string | null; /** * Selects the methods to which this rule applies. Refer to selector for syntax details. */ selector?: string | null; } /** * Billing related configuration of the service. The following example shows how to configure monitored resources and metrics for billing, `consumer_destinations` is the only supported destination and the monitored resources need at least one label key `cloud.googleapis.com/location` to indicate the location of the billing usage, using different monitored resources between monitoring and billing is recommended so they can be evolved independently: monitored_resources: - type: library.googleapis.com/billing_branch labels: - key: cloud.googleapis.com/location description: | Predefined label to support billing location restriction. - key: city description: | Custom label to define the city where the library branch is located in. - key: name description: Custom label to define the name of the library branch. metrics: - name: library.googleapis.com/book/borrowed_count metric_kind: DELTA value_type: INT64 unit: "1" billing: consumer_destinations: - monitored_resource: library.googleapis.com/billing_branch metrics: - library.googleapis.com/book/borrowed_count */ export interface Schema$Billing { /** * Billing configurations for sending metrics to the consumer project. There can be multiple consumer destinations per service, each one must have a different monitored resource type. A metric can be used in at most one consumer destination. */ consumerDestinations?: Schema$BillingDestination[]; } /** * Configuration of a specific billing destination (Currently only support bill against consumer project). */ export interface Schema$BillingDestination { /** * Names of the metrics to report to this billing destination. Each name must be defined in Service.metrics section. */ metrics?: string[] | null; /** * The monitored resource type. The type must be defined in Service.monitored_resources section. */ monitoredResource?: string | null; } /** * Represents a private connection resource. A private connection is implemented as a VPC Network Peering connection between a service producer's VPC network and a service consumer's VPC network. */ export interface Schema$Connection { /** * The name of service consumer's VPC network that's connected with service producer network, in the following format: `projects/{project\}/global/networks/{network\}`. `{project\}` is a project number, such as in `12345` that includes the VPC service consumer's VPC network. `{network\}` is the name of the service consumer's VPC network. */ network?: string | null; /** * Output only. The name of the VPC Network Peering connection that was created by the service producer. */ peering?: string | null; /** * The name of one or more allocated IP address ranges for this service producer of type `PEERING`. Note that invoking CreateConnection method with a different range when connection is already established will not modify already provisioned service producer subnetworks. If CreateConnection method is invoked repeatedly to reconnect when peering connection had been disconnected on the consumer side, leaving this field empty will restore previously allocated IP ranges. */ reservedPeeringRanges?: string[] | null; /** * Output only. The name of the peering service that's associated with this connection, in the following format: `services/{service name\}`. */ service?: string | null; } /** * Configuration information for a private service access connection. */ export interface Schema$ConsumerConfig { /** * Export custom routes flag value for peering from consumer to producer. */ consumerExportCustomRoutes?: boolean | null; /** * Export subnet routes with public ip flag value for peering from consumer to producer. */ consumerExportSubnetRoutesWithPublicIp?: boolean | null; /** * Import custom routes flag value for peering from consumer to producer. */ consumerImportCustomRoutes?: boolean | null; /** * Import subnet routes with public ip flag value for peering from consumer to producer. */ consumerImportSubnetRoutesWithPublicIp?: boolean | null; /** * Export custom routes flag value for peering from producer to consumer. */ producerExportCustomRoutes?: boolean | null; /** * Export subnet routes with public ip flag value for peering from producer to consumer. */ producerExportSubnetRoutesWithPublicIp?: boolean | null; /** * Import custom routes flag value for peering from producer to consumer. */ producerImportCustomRoutes?: boolean | null; /** * Import subnet routes with public ip flag value for peering from producer to consumer. */ producerImportSubnetRoutesWithPublicIp?: boolean | null; /** * Output only. The VPC host network that is used to host managed service instances. In the format, projects/{project\}/global/networks/{network\} where {project\} is the project number e.g. '12345' and {network\} is the network name. */ producerNetwork?: string | null; /** * Output only. The reserved ranges associated with this private service access connection. */ reservedRanges?: Schema$GoogleCloudServicenetworkingV1ConsumerConfigReservedRange[]; /** * Output only. Indicates whether the VPC Service Controls reference architecture is configured for the producer VPC host network. */ vpcScReferenceArchitectureEnabled?: boolean | null; } /** * Metadata provided through GetOperation request for the LRO generated by UpdateConsumerConfig API. */ export interface Schema$ConsumerConfigMetadata { } /** * `Context` defines which contexts an API requests. Example: context: rules: - selector: "*" requested: - google.rpc.context.ProjectContext - google.rpc.context.OriginContext The above specifies that all methods in the API request `google.rpc.context.ProjectContext` and `google.rpc.context.OriginContext`. Available context types are defined in package `google.rpc.context`. This also provides mechanism to allowlist any protobuf message extension that can be sent in grpc metadata using “x-goog-ext--bin” and “x-goog-ext--jspb” format. For example, list any service specific protobuf types that can appear in grpc metadata as follows in your yaml file: Example: context: rules: - selector: "google.example.library.v1.LibraryService.CreateBook" allowed_request_extensions: - google.foo.v1.NewExtension allowed_response_extensions: - google.foo.v1.NewExtension You can also specify extension ID instead of fully qualified extension name here. */ export interface Schema$Context { /** * A list of RPC context rules that apply to individual API methods. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$ContextRule[]; } /** * A context rule provides information about the context for an individual API element. */ export interface Schema$ContextRule { /** * A list of full type names or extension IDs of extensions allowed in grpc side channel from client to backend. */ allowedRequestExtensions?: string[] | null; /** * A list of full type names or extension IDs of extensions allowed in grpc side channel from backend to client. */ allowedResponseExtensions?: string[] | null; /** * A list of full type names of provided contexts. */ provided?: string[] | null; /** * A list of full type names of requested contexts. */ requested?: string[] | null; /** * Selects the methods to which this rule applies. Refer to selector for syntax details. */ selector?: string | null; } /** * Selects and configures the service controller used by the service. The service controller handles features like abuse, quota, billing, logging, monitoring, etc. */ export interface Schema$Control { /** * The service control environment to use. If empty, no control plane feature (like quota and billing) will be enabled. */ environment?: string | null; } /** * Customize service error responses. For example, list any service specific protobuf types that can appear in error detail lists of error responses. Example: custom_error: types: - google.foo.v1.CustomError - google.foo.v1.AnotherError */ export interface Schema$CustomError { /** * The list of custom error rules that apply to individual API messages. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$CustomErrorRule[]; /** * The list of custom error detail types, e.g. 'google.foo.v1.CustomError'. */ types?: string[] | null; } /** * A custom error rule. */ export interface Schema$CustomErrorRule { /** * Mark this message as possible payload in error response. Otherwise, objects of this type will be filtered when they appear in error payload. */ isErrorType?: boolean | null; /** * Selects messages to which this rule applies. Refer to selector for syntax details. */ selector?: string | null; } /** * A custom pattern is used for defining custom HTTP verb. */ export interface Schema$CustomHttpPattern { /** * The name of this custom HTTP verb. */ kind?: string | null; /** * The path matched by this custom verb. */ path?: string | null; } /** * Metadata provided through GetOperation request for the LRO generated by Delete Connection API */ export interface Schema$DeleteConnectionMetadata { } /** * Metadata provided through GetOperation request for the LRO generated by DeletePeeredDnsDomain API. */ export interface Schema$DeletePeeredDnsDomainMetadata { } /** * Represents a DNS record set resource. */ export interface Schema$DnsRecordSet { /** * Required. As defined in RFC 1035 (section 5) and RFC 1034 (section 3.6.1) for examples see https://cloud.google.com/dns/records/json-record. */ data?: string[] | null; /** * Required. The DNS or domain name of the record set, e.g. `test.example.com`. */ domain?: string | null; /** * Required. The period of time for which this RecordSet can be cached by resolvers. */ ttl?: string | null; /** * Required. The identifier of a supported record type. */ type?: string | null; } /** * Represents a DNS zone resource. */ export interface Schema$DnsZone { /** * The DNS name suffix of this zone e.g. `example.com.`. */ dnsSuffix?: string | null; /** * User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. */ name?: string | null; } /** * `Documentation` provides the information for describing a service. Example: documentation: summary: \> The Google Calendar API gives access to most calendar features. pages: - name: Overview content: (== include google/foo/overview.md ==) - name: Tutorial content: (== include google/foo/tutorial.md ==) subpages; - name: Java content: (== include google/foo/tutorial_java.md ==) rules: - selector: google.calendar.Calendar.Get description: \> ... - selector: google.calendar.Calendar.Put description: \> ... Documentation is provided in markdown syntax. In addition to standard markdown features, definition lists, tables and fenced code blocks are supported. Section headers can be provided and are interpreted relative to the section nesting of the context where a documentation fragment is embedded. Documentation from the IDL is merged with documentation defined via the config at normalization time, where documentation provided by config rules overrides IDL provided. A number of constructs specific to the API platform are supported in documentation text. In order to reference a proto element, the following notation can be used: [fully.qualified.proto.name][] To override the display text used for the link, this can be used: [display text][fully.qualified.proto.name] Text can be excluded from doc using the following notation: (-- internal comment --) A few directives are available in documentation. Note that directives must appear on a single line to be properly identified. The `include` directive includes a markdown file from an external source: (== include path/to/file ==) The `resource_for` directive marks a message to be the resource of a collection in REST view. If it is not specified, tools attempt to infer the resource from the operations in a collection: (== resource_for v1.shelves.books ==) The directive `suppress_warning` does not directly affect documentation and is documented together with service config validation. */ export interface Schema$Documentation { /** * The URL to the root of documentation. */ documentationRootUrl?: string | null; /** * Declares a single overview page. For example: documentation: summary: ... overview: (== include overview.md ==) This is a shortcut for the following declaration (using pages style): documentation: summary: ... pages: - name: Overview content: (== include overview.md ==) Note: you cannot specify both `overview` field and `pages` field. */ overview?: string | null; /** * The top level pages for the documentation set. */ pages?: Schema$Page[]; /** * A list of documentation rules that apply to individual API elements. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$DocumentationRule[]; /** * Specifies the service root url if the default one (the service name from the yaml file) is not suitable. This can be seen in any fully specified service urls as well as sections that show a base that other urls are relative to. */ serviceRootUrl?: string | null; /** * A short summary of what the service does. Can only be provided by plain text. */ summary?: string | null; } /** * A documentation rule provides information about individual API elements. */ export interface Schema$DocumentationRule { /** * Deprecation description of the selected element(s). It can be provided if an element is marked as `deprecated`. */ deprecationDescription?: string | null; /** * Description of the selected API(s). */ description?: string | null; /** * The selector is a comma-separated list of patterns. Each pattern is a qualified name of the element which may end in "*", indicating a wildcard. Wildcards are only allowed at the end and for a whole component of the qualified name, i.e. "foo.*" is ok, but not "foo.b*" or "foo.*.bar". A wildcard will match one or more components. To specify a default for all applicable elements, the whole pattern "*" is used. */ selector?: string | null; } /** * `Endpoint` describes a network endpoint of a service that serves a set of APIs. It is commonly known as a service endpoint. A service may expose any number of service endpoints, and all service endpoints share the same service definition, such as quota limits and monitoring metrics. Example service configuration: name: library-example.googleapis.com endpoints: # Below entry makes 'google.example.library.v1.Library' # API be served from endpoint address library-example.googleapis.com. # It also allows HTTP OPTIONS calls to be passed to the backend, for # it to decide whether the subsequent cross-origin request is # allowed to proceed. - name: library-example.googleapis.com allow_cors: true */ export interface Schema$Endpoint { /** * DEPRECATED: This field is no longer supported. Instead of using aliases, please specify multiple google.api.Endpoint for each of the intended aliases. Additional names that this endpoint will be hosted on. */ aliases?: string[] | null; /** * Allowing [CORS](https://en.wikipedia.org/wiki/Cross-origin_resource_sharing), aka cross-domain traffic, would allow the backends served from this endpoint to receive and respond to HTTP OPTIONS requests. The response will be used by the browser to determine whether the subsequent cross-origin request is allowed to proceed. */ allowCors?: boolean | null; /** * The canonical name of this endpoint. */ name?: string | null; /** * The specification of an Internet routable address of API frontend that will handle requests to this [API Endpoint](https://cloud.google.com/apis/design/glossary). It should be either a valid IPv4 address or a fully-qualified domain name. For example, "8.8.8.8" or "myservice.appspot.com". */ target?: string | null; } /** * Enum type definition. */ export interface Schema$Enum { /** * Enum value definitions. */ enumvalue?: Schema$EnumValue[]; /** * Enum type name. */ name?: string | null; /** * Protocol buffer options. */ options?: Schema$Option[]; /** * The source context. */ sourceContext?: Schema$SourceContext; /** * The source syntax. */ syntax?: string | null; } /** * Enum value definition. */ export interface Schema$EnumValue { /** * Enum value name. */ name?: string | null; /** * Enum value number. */ number?: number | null; /** * Protocol buffer options. */ options?: Schema$Option[]; } /** * A single field of a message type. */ export interface Schema$Field { /** * The field cardinality. */ cardinality?: string | null; /** * The string value of the default value of this field. Proto2 syntax only. */ defaultValue?: string | null; /** * The field JSON name. */ jsonName?: string | null; /** * The field type. */ kind?: string | null; /** * The field name. */ name?: string | null; /** * The field number. */ number?: number | null; /** * The index of the field type in `Type.oneofs`, for message or enumeration types. The first type has index 1; zero means the type is not in the list. */ oneofIndex?: number | null; /** * The protocol buffer options. */ options?: Schema$Option[]; /** * Whether to use alternative packed wire representation. */ packed?: boolean | null; /** * The field type URL, without the scheme, for message or enumeration types. Example: `"type.googleapis.com/google.protobuf.Timestamp"`. */ typeUrl?: string | null; } /** * Represents a private connection resource. A private connection is implemented as a VPC Network Peering connection between a service producer's VPC network and a service consumer's VPC network. */ export interface Schema$GoogleCloudServicenetworkingV1betaConnection { /** * The name of service consumer's VPC network that's connected with service producer network, in the following format: `projects/{project\}/global/networks/{network\}`. `{project\}` is a project number, such as in `12345` that includes the VPC service consumer's VPC network. `{network\}` is the name of the service consumer's VPC network. */ network?: string | null; /** * Output only. The name of the VPC Network Peering connection that was created by the service producer. */ peering?: string | null; /** * The name of one or more allocated IP address ranges for this service producer of type `PEERING`. Note that invoking this method with a different range when connection is already established will not modify already provisioned service producer subnetworks. */ reservedPeeringRanges?: string[] | null; /** * Output only. The name of the peering service that's associated with this connection, in the following format: `services/{service name\}`. */ service?: string | null; } /** * Represents a subnet that was created or discovered by a private access management service. */ export interface Schema$GoogleCloudServicenetworkingV1betaSubnetwork { /** * Subnetwork CIDR range in `10.x.x.x/y` format. */ ipCidrRange?: string | null; /** * Subnetwork name. See https://cloud.google.com/compute/docs/vpc/ */ name?: string | null; /** * In the Shared VPC host project, the VPC network that's peered with the consumer network. For example: `projects/1234321/global/networks/host-network` */ network?: string | null; /** * This is a discovered subnet that is not within the current consumer allocated ranges. */ outsideAllocation?: boolean | null; } /** * Allocated IP address ranges for this private service access connection. */ export interface Schema$GoogleCloudServicenetworkingV1ConsumerConfigReservedRange { /** * The starting address of the reserved range. The address must be a valid IPv4 address in the x.x.x.x format. This value combined with the IP prefix length is the CIDR range for the reserved range. */ address?: string | null; /** * The prefix length of the reserved range. */ ipPrefixLength?: number | null; /** * The name of the reserved range. */ name?: string | null; } /** * Defines the HTTP configuration for an API service. It contains a list of HttpRule, each specifying the mapping of an RPC method to one or more HTTP REST API methods. */ export interface Schema$Http { /** * When set to true, URL path parameters will be fully URI-decoded except in cases of single segment matches in reserved expansion, where "%2F" will be left encoded. The default behavior is to not decode RFC 6570 reserved characters in multi segment matches. */ fullyDecodeReservedExpansion?: boolean | null; /** * A list of HTTP configuration rules that apply to individual API methods. **NOTE:** All service configuration rules follow "last one wins" order. */ rules?: Schema$HttpRule[]; } /** * # gRPC Transcoding gRPC Transcoding is a feature for mapping between a gRPC method and one or more HTTP REST endpoints. It allows developers to build a single API service that supports both gRPC APIs and REST APIs. Many systems, including [Google APIs](https://github.com/googleapis/googleapis), [Cloud Endpoints](https://cloud.google.com/endpoints), [gRPC Gateway](https://github.com/grpc-ecosystem/grpc-gateway), and [Envoy](https://github.com/envoyproxy/envoy) proxy support this feature and use it for large scale production services. `HttpRule` defines the schema of the gRPC/REST mapping. The mapping specifies how different portions of the gRPC request message are mapped to the URL path, URL query parameters, and HTTP request body. It also controls how the gRPC response message is mapped to the HTTP response body. `HttpRule` is typically specified as an `google.api.http` annotation on the gRPC method. Each mapping specifies a URL path template and an HTTP method. The path template may refer to one or more fields in the gRPC request message, as long as each field is a non-repeated field with a primitive (non-message) type. The path template controls how fields of the request message are mapped to the URL path. Example: service Messaging { rpc GetMessage(GetMessageRequest) returns (Message) { option (google.api.http) = { get: "/v1/{name=messages/x\}" \}; \} \} message GetMessageRequest { string name = 1; // Mapped to URL path. \} message Message { string text = 1; // The resource content. \} This enables an HTTP REST to gRPC mapping as below: HTTP | gRPC -----|----- `GET /v1/messages/123456` | `GetMessage(name: "messages/123456")` Any fields in the request message which are not bound by the path template automatically become HTTP query parameters if there is no HTTP request body. For example: service Messaging { rpc GetMessage(GetMessageRequest) returns (Message) { option (google.api.http) = { get:"/v1/messages/{message_id\}" \}; \} \} message GetMessageRequest { message SubMessage { string subfield = 1; \} string message_id = 1; // Mapped to URL path. int64 revision = 2; // Mapped to URL query parameter `revision`. SubMessage sub = 3; // Mapped to URL query parameter `sub.subfield`. \} This enables a HTTP JSON to RPC mapping as below: HTTP | gRPC -----|----- `GET /v1/messages/123456?revision=2&sub.subfield=foo` | `GetMessage(message_id: "123456" revision: 2 sub: SubMessage(subfield: "foo"))` Note that fields which are mapped to URL query parameters must have a primitive type or a repeated primitive type or a non-repeated message type. In the case of a repeated type, the parameter can be repeated in the URL as `...?param=A&param=B`. In the case of a message type, each field of the message is mapped to a separate parameter, such as `...?foo.a=A&foo.b=B&foo.c=C`. For HTTP methods that allow a request body, the `body` field specifies the mapping. Consider a REST update method on the message resource collection: service Messaging { rpc UpdateMessage(UpdateMessageRequest) returns (Message) { option (google.api.http) = { patch: "/v1/messages/{message_id\}" body: "message" \}; \} \} message UpdateMessageRequest { string message_id = 1; // mapped to the URL Message message = 2; // mapped to the body \} The following HTTP JSON to RPC mapping is enabled, where the representation of the JSON in the request body is determined by protos JSON encoding: HTTP | gRPC -----|----- `PATCH /v1/messages/123456 { "text": "Hi!" \}` | `UpdateMessage(message_id: "123456" message { text: "Hi!" \})` The special name `*` can be used in the body mapping to define that every field not bound by the path template should be mapped to the request body. This enables the following alternative definition of the update method: service Messaging { rpc UpdateMessage(Message) returns (Message) { option (google.api.http) = { patch: "/v1/messages/{message_id\}" body: "*" \}; \} \} message Message { string message_id = 1; string text = 2; \} The following HTTP JSON to RPC mapping is enabled: HTTP | gRPC -----|----- `PATCH /v1/messages/123456 { "text": "Hi!" \}` | `UpdateMessage(message_id: "123456" text: "Hi!")` Note that when using `*` in the body mapping, it is not possible to have HTTP parameters, as all fields not bound by the path end in the body. This makes this option more rarely used in practice when defining REST APIs. The common usage of `*` is in custom methods which don't use the URL at all for transferring data. It is possible to define multiple HTTP methods for one RPC by using the `additional_bindings` option. Example: service Messaging { rpc GetMessage(GetMessageRequest) returns (Message) { option (google.api.http) = { get: "/v1/messages/{message_id\}" additional_bindings { get: "/v1/users/{user_id\}/messages/{message_id\}" \} \}; \} \} message GetMessageRequest { string message_id = 1; string user_id = 2; \} This enables the following two alternative HTTP JSON to RPC mappings: HTTP | gRPC -----|----- `GET /v1/messages/123456` | `GetMessage(message_id: "123456")` `GET /v1/users/me/messages/123456` | `GetMessage(user_id: "me" message_id: "123456")` ## Rules for HTTP mapping 1. Leaf request fields (recursive expansion nested messages in the request message) are classified into three categories: - Fields referred by the path template. They are passed via the URL path. - Fields referred by the HttpRule.body. They are passed via the HTTP request body. - All other fields are passed via the URL query parameters, and the parameter name is the field path in the request message. A repeated field can be represented as multiple query parameters under the same name. 2. If HttpRule.body is "*", there is no URL query parameter, all fields are passed via URL path and HTTP request body. 3. If HttpRule.body is omitted, there is no HTTP request body, all fields are passed via URL path and URL query parameters. ### Path template syntax Template = "/" Segments [ Verb ] ; Segments = Segment { "/" Segment \} ; Segment = "*" | "**" | LITERAL | Variable ; Variable = "{" FieldPath [ "=" Segments ] "\}" ; FieldPath = IDENT { "." IDENT \} ; Verb = ":" LITERAL ; The syntax `*` matches a single URL path segment. The syntax `**` matches zero or more URL path segments, which must be the last part of the URL path except the `Verb`. The syntax `Variable` matches part of the URL path as specified by its template. A variable template must not contain other variables. If a variable matches a single path segment, its template may be omitted, e.g. `{var\}` is equivalent to `{var=*\}`. The syntax `LITERAL` matches literal text in the URL path. If the `LITERAL` contains any reserved character, such characters should be percent-encoded before the matching. If a variable contains exactly one path segment, such as `"{var\}"` or `"{var=*\}"`, when such a variable is expanded into a URL path on the client side, all characters except `[-_.~0-9a-zA-Z]` are percent-encoded. The server side does the reverse decoding. Such variables show up in the [Discovery Document](https://developers.google.com/discovery/v1/reference/apis) as `{var\}`. If a variable contains multiple path segments, such as `"{var=foo/x\}"` or `"{var=**\}"`, when such a variable is expanded into a URL path on the client side, all characters except `[-_.~/0-9a-zA-Z]` are percent-encoded. The server side does the reverse decoding, except "%2F" and "%2f" are left unchanged. Such variables show up in the [Discovery Document](https://developers.google.com/discovery/v1/reference/apis) as `{+var\}`. ## Using gRPC API Service Configuration gRPC API Service Configuration (service config) is a configuration language for configuring a gRPC service to become a user-facing product. The service config is simply the YAML representation of the `google.api.Service` proto message. As an alternative to annotating your proto file, you can configure gRPC transcoding in your service config YAML files. You do this by specifying a `HttpRule` that maps the gRPC method to a REST endpoint, achieving the same effect as the proto annotation. This can be particularly useful if you have a proto that is reused in multiple services. Note that any transcoding specified in the service config will override any matching transcoding configuration in the proto. Example: http: rules: # Selects a gRPC method and applies HttpRule to it. - selector: example.v1.Messaging.GetMessage get: /v1/messages/{message_id\}/{sub.subfield\} ## Special notes When gRPC Transcoding is used to map a gRPC to JSON REST endpoints, the proto to JSON conversion must follow the [proto3 specificati