UNPKG

openapi-directory

Version:

Building & bundling https://github.com/APIs-guru/openapi-directory for easy use from JS

github.com/httptoolkit/openapi-directory-js

httptoolkit/openapi-directory-js

1 lines 89.6 kB
1
{"openapi":"3.0.0","servers":[{"url":"https://networkmanagement.googleapis.com/"}],"info":{"contact":{"name":"Google","url":"https://google.com","x-twitter":"youtube"},"description":"The Network Management API provides a collection of network performance monitoring and diagnostic capabilities.","license":{"name":"Creative Commons Attribution 3.0","url":"http://creativecommons.org/licenses/by/3.0/"},"termsOfService":"https://developers.google.com/terms/","title":"Network Management API","version":"v1beta1","x-apiClientRegistration":{"url":"https://console.developers.google.com"},"x-apisguru-categories":["analytics","media"],"x-logo":{"url":"https://www.google.com/images/branding/googlelogo/2x/googlelogo_color_272x92dp.png"},"x-origin":[{"format":"google","url":"https://networkmanagement.googleapis.com/$discovery/rest?version=v1beta1","version":"v1"}],"x-preferred":true,"x-providerName":"googleapis.com","x-serviceName":"networkmanagement"},"externalDocs":{"url":"https://cloud.google.com/"},"tags":[{"name":"projects"}],"paths":{"/v1beta1/{name}":{"delete":{"description":"Deletes a long-running operation. This method indicates that the client is no longer interested in the operation result. It does not cancel the operation. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`.","operationId":"networkmanagement.projects.locations.global.operations.delete","parameters":[{"description":"The name of the operation resource to be deleted.","in":"path","name":"name","required":true,"schema":{"type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Empty"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"get":{"description":"Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.","operationId":"networkmanagement.projects.locations.global.operations.get","parameters":[{"description":"The name of the operation resource.","in":"path","name":"name","required":true,"schema":{"type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Operation"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"patch":{"description":"Updates the configuration of an existing `ConnectivityTest`. After you update a test, the reachability analysis is performed as part of the long running operation, which completes when the analysis completes. The Reachability state in the test resource is updated with the new result. If the endpoint specifications in `ConnectivityTest` are invalid (for example, they contain non-existent resources in the network, or the user does not have read permissions to the network configurations of listed projects), then the reachability result returns a value of UNKNOWN. If the endpoint specifications in `ConnectivityTest` are incomplete, the reachability result returns a value of `AMBIGUOUS`. See the documentation in `ConnectivityTest` for for more details.","operationId":"networkmanagement.projects.locations.global.connectivityTests.patch","parameters":[{"description":"Required. Unique name of the resource using the form: `projects/{project_id}/locations/global/connectivityTests/{test}`","in":"path","name":"name","required":true,"schema":{"type":"string"}},{"description":"Required. Mask of fields to update. At least one path must be supplied in this field.","in":"query","name":"updateMask","schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ConnectivityTest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Operation"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}},"/v1beta1/{name}/locations":{"get":{"description":"Lists information about the supported locations for this service.","operationId":"networkmanagement.projects.locations.list","parameters":[{"description":"The resource that owns the locations collection, if applicable.","in":"path","name":"name","required":true,"schema":{"type":"string"}},{"description":"A filter to narrow down results to a preferred subset. The filtering language accepts strings like `\"displayName=tokyo\"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160).","in":"query","name":"filter","schema":{"type":"string"}},{"description":"The maximum number of results to return. If not set, the service selects a default.","in":"query","name":"pageSize","schema":{"type":"integer"}},{"description":"A page token received from the `next_page_token` field in the response. Send that page token to receive the subsequent page.","in":"query","name":"pageToken","schema":{"type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListLocationsResponse"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}]},"/v1beta1/{name}/operations":{"get":{"description":"Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`.","operationId":"networkmanagement.projects.locations.global.operations.list","parameters":[{"description":"The name of the operation's parent resource.","in":"path","name":"name","required":true,"schema":{"type":"string"}},{"description":"The standard list filter.","in":"query","name":"filter","schema":{"type":"string"}},{"description":"The standard list page size.","in":"query","name":"pageSize","schema":{"type":"integer"}},{"description":"The standard list page token.","in":"query","name":"pageToken","schema":{"type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListOperationsResponse"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}]},"/v1beta1/{name}:cancel":{"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"post":{"description":"Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.","operationId":"networkmanagement.projects.locations.global.operations.cancel","parameters":[{"description":"The name of the operation resource to be cancelled.","in":"path","name":"name","required":true,"schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/CancelOperationRequest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Empty"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}},"/v1beta1/{name}:rerun":{"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"post":{"description":"Rerun an existing `ConnectivityTest`. After the user triggers the rerun, the reachability analysis is performed as part of the long running operation, which completes when the analysis completes. Even though the test configuration remains the same, the reachability result may change due to underlying network configuration changes. If the endpoint specifications in `ConnectivityTest` become invalid (for example, specified resources are deleted in the network, or you lost read permissions to the network configurations of listed projects), then the reachability result returns a value of `UNKNOWN`.","operationId":"networkmanagement.projects.locations.global.connectivityTests.rerun","parameters":[{"description":"Required. Connectivity Test resource name using the form: `projects/{project_id}/locations/global/connectivityTests/{test_id}`","in":"path","name":"name","required":true,"schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/RerunConnectivityTestRequest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Operation"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}},"/v1beta1/{parent}/connectivityTests":{"get":{"description":"Lists all Connectivity Tests owned by a project.","operationId":"networkmanagement.projects.locations.global.connectivityTests.list","parameters":[{"description":"Required. The parent resource of the Connectivity Tests: `projects/{project_id}/locations/global`","in":"path","name":"parent","required":true,"schema":{"type":"string"}},{"description":"Lists the `ConnectivityTests` that match the filter expression. A filter expression filters the resources listed in the response. The expression must be of the form ` ` where operators: `<`, `>`, `<=`, `>=`, `!=`, `=`, `:` are supported (colon `:` represents a HAS operator which is roughly synonymous with equality). can refer to a proto or JSON field, or a synthetic field. Field names can be camelCase or snake_case. Examples: - Filter by name: name = \"projects/proj-1/locations/global/connectivityTests/test-1 - Filter by labels: - Resources that have a key called `foo` labels.foo:* - Resources that have a key called `foo` whose value is `bar` labels.foo = bar","in":"query","name":"filter","schema":{"type":"string"}},{"description":"Field to use to sort the list.","in":"query","name":"orderBy","schema":{"type":"string"}},{"description":"Number of `ConnectivityTests` to return.","in":"query","name":"pageSize","schema":{"type":"integer"}},{"description":"Page token from an earlier query, as returned in `next_page_token`.","in":"query","name":"pageToken","schema":{"type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListConnectivityTestsResponse"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"post":{"description":"Creates a new Connectivity Test. After you create a test, the reachability analysis is performed as part of the long running operation, which completes when the analysis completes. If the endpoint specifications in `ConnectivityTest` are invalid (for example, containing non-existent resources in the network, or you don't have read permissions to the network configurations of listed projects), then the reachability result returns a value of `UNKNOWN`. If the endpoint specifications in `ConnectivityTest` are incomplete, the reachability result returns a value of AMBIGUOUS. For more information, see the Connectivity Test documentation.","operationId":"networkmanagement.projects.locations.global.connectivityTests.create","parameters":[{"description":"Required. The parent resource of the Connectivity Test to create: `projects/{project_id}/locations/global`","in":"path","name":"parent","required":true,"schema":{"type":"string"}},{"description":"Required. The logical name of the Connectivity Test in your project with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-40 characters. * Must end with a number or a letter. * Must be unique within the customer project","in":"query","name":"testId","schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ConnectivityTest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Operation"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}},"/v1beta1/{resource}:getIamPolicy":{"get":{"description":"Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.","operationId":"networkmanagement.projects.locations.global.connectivityTests.getIamPolicy","parameters":[{"description":"REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.","in":"path","name":"resource","required":true,"schema":{"type":"string"}},{"description":"Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).","in":"query","name":"options.requestedPolicyVersion","schema":{"type":"integer"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Policy"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]},"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}]},"/v1beta1/{resource}:setIamPolicy":{"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"post":{"description":"Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.","operationId":"networkmanagement.projects.locations.global.connectivityTests.setIamPolicy","parameters":[{"description":"REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.","in":"path","name":"resource","required":true,"schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/SetIamPolicyRequest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Policy"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}},"/v1beta1/{resource}:testIamPermissions":{"parameters":[{"$ref":"#/components/parameters/_.xgafv"},{"$ref":"#/components/parameters/access_token"},{"$ref":"#/components/parameters/alt"},{"$ref":"#/components/parameters/callback"},{"$ref":"#/components/parameters/fields"},{"$ref":"#/components/parameters/key"},{"$ref":"#/components/parameters/oauth_token"},{"$ref":"#/components/parameters/prettyPrint"},{"$ref":"#/components/parameters/quotaUser"},{"$ref":"#/components/parameters/upload_protocol"},{"$ref":"#/components/parameters/uploadType"}],"post":{"description":"Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.","operationId":"networkmanagement.projects.locations.global.connectivityTests.testIamPermissions","parameters":[{"description":"REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.","in":"path","name":"resource","required":true,"schema":{"type":"string"}}],"requestBody":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/TestIamPermissionsRequest"}}}},"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/TestIamPermissionsResponse"}}},"description":"Successful response"}},"security":[{"Oauth2":["https://www.googleapis.com/auth/cloud-platform"],"Oauth2c":["https://www.googleapis.com/auth/cloud-platform"]}],"tags":["projects"]}}},"components":{"parameters":{"_.xgafv":{"description":"V1 error format.","in":"query","name":"$.xgafv","schema":{"enum":["1","2"],"type":"string"}},"access_token":{"description":"OAuth access token.","in":"query","name":"access_token","schema":{"type":"string"}},"alt":{"description":"Data format for response.","in":"query","name":"alt","schema":{"enum":["json","media","proto"],"type":"string"}},"callback":{"description":"JSONP","in":"query","name":"callback","schema":{"type":"string"}},"fields":{"description":"Selector specifying which fields to include in a partial response.","in":"query","name":"fields","schema":{"type":"string"}},"key":{"description":"API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token.","in":"query","name":"key","schema":{"type":"string"}},"oauth_token":{"description":"OAuth 2.0 token for the current user.","in":"query","name":"oauth_token","schema":{"type":"string"}},"prettyPrint":{"description":"Returns response with indentations and line breaks.","in":"query","name":"prettyPrint","schema":{"type":"boolean"}},"quotaUser":{"description":"Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters.","in":"query","name":"quotaUser","schema":{"type":"string"}},"uploadType":{"description":"Legacy upload protocol for media (e.g. \"media\", \"multipart\").","in":"query","name":"uploadType","schema":{"type":"string"}},"upload_protocol":{"description":"Upload protocol for media (e.g. \"raw\", \"multipart\").","in":"query","name":"upload_protocol","schema":{"type":"string"}}},"schemas":{"AbortInfo":{"description":"Details of the final state \"abort\" and associated resource.","properties":{"cause":{"description":"Causes that the analysis is aborted.","enum":["CAUSE_UNSPECIFIED","UNKNOWN_NETWORK","UNKNOWN_PROJECT","NO_EXTERNAL_IP","UNINTENDED_DESTINATION","SOURCE_ENDPOINT_NOT_FOUND","MISMATCHED_SOURCE_NETWORK","DESTINATION_ENDPOINT_NOT_FOUND","MISMATCHED_DESTINATION_NETWORK","UNKNOWN_IP","SOURCE_IP_ADDRESS_NOT_IN_SOURCE_NETWORK","PERMISSION_DENIED","PERMISSION_DENIED_NO_CLOUD_NAT_CONFIGS","PERMISSION_DENIED_NO_NEG_ENDPOINT_CONFIGS","NO_SOURCE_LOCATION","INVALID_ARGUMENT","TRACE_TOO_LONG","INTERNAL_ERROR","UNSUPPORTED","MISMATCHED_IP_VERSION","GKE_KONNECTIVITY_PROXY_UNSUPPORTED","RESOURCE_CONFIG_NOT_FOUND","VM_INSTANCE_CONFIG_NOT_FOUND","NETWORK_CONFIG_NOT_FOUND","FIREWALL_CONFIG_NOT_FOUND","ROUTE_CONFIG_NOT_FOUND","GOOGLE_MANAGED_SERVICE_AMBIGUOUS_PSC_ENDPOINT","SOURCE_PSC_CLOUD_SQL_UNSUPPORTED","SOURCE_FORWARDING_RULE_UNSUPPORTED","NON_ROUTABLE_IP_ADDRESS"],"type":"string","x-enumDeprecated":[false,true,true,true,true,true,true,true,true,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false,false]},"ipAddress":{"description":"IP address that caused the abort.","type":"string"},"projectsMissingPermission":{"description":"List of project IDs the user specified in the request but lacks access to. In this case, analysis is aborted with the PERMISSION_DENIED cause.","items":{"type":"string"},"type":"array"},"resourceUri":{"description":"URI of the resource that caused the abort.","type":"string"}},"type":"object"},"AppEngineVersionEndpoint":{"description":"Wrapper for the App Engine service version attributes.","properties":{"uri":{"description":"An [App Engine](https://cloud.google.com/appengine) [service version](https://cloud.google.com/appengine/docs/admin-api/reference/rest/v1/apps.services.versions) name.","type":"string"}},"type":"object"},"AppEngineVersionInfo":{"description":"For display only. Metadata associated with an App Engine version.","properties":{"displayName":{"description":"Name of an App Engine version.","type":"string"},"environment":{"description":"App Engine execution environment for a version.","type":"string"},"runtime":{"description":"Runtime of the App Engine version.","type":"string"},"uri":{"description":"URI of an App Engine version.","type":"string"}},"type":"object"},"AuditConfig":{"description":"Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { \"audit_configs\": [ { \"service\": \"allServices\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" }, { \"log_type\": \"ADMIN_READ\" } ] }, { \"service\": \"sampleservice.googleapis.com\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\" }, { \"log_type\": \"DATA_WRITE\", \"exempted_members\": [ \"user:aliya@example.com\" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.","properties":{"auditLogConfigs":{"description":"The configuration for logging of each type of permission.","items":{"$ref":"#/components/schemas/AuditLogConfig"},"type":"array"},"service":{"description":"Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.","type":"string"}},"type":"object"},"AuditLogConfig":{"description":"Provides the configuration for logging a type of permissions. Example: { \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.","properties":{"exemptedMembers":{"description":"Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.","items":{"type":"string"},"type":"array"},"logType":{"description":"The log type that this config enables.","enum":["LOG_TYPE_UNSPECIFIED","ADMIN_READ","DATA_WRITE","DATA_READ"],"type":"string"}},"type":"object"},"Binding":{"description":"Associates `members`, or principals, with a `role`.","properties":{"condition":{"$ref":"#/components/schemas/Expr","description":"The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies)."},"members":{"description":"Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workforce identity pool. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}`: All workforce identities in a group. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All workforce identities with a specific attribute value. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/*`: All identities in a workforce identity pool. * `principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workload identity pool. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}`: A workload identity pool group. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All identities in a workload identity pool with a certain attribute. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/*`: All identities in a workload identity pool. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: Deleted single identity in a workforce identity pool. For example, `deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value`.","items":{"type":"string"},"type":"array"},"role":{"description":"Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. For an overview of the IAM roles and permissions, see the [IAM documentation](https://cloud.google.com/iam/docs/roles-overview). For a list of the available pre-defined roles, see [here](https://cloud.google.com/iam/docs/understanding-roles).","type":"string"}},"type":"object"},"CancelOperationRequest":{"description":"The request message for Operations.CancelOperation.","properties":{},"type":"object"},"CloudFunctionEndpoint":{"description":"Wrapper for Cloud Function attributes.","properties":{"uri":{"description":"A [Cloud Function](https://cloud.google.com/functions) name.","type":"string"}},"type":"object"},"CloudFunctionInfo":{"description":"For display only. Metadata associated with a Cloud Function.","properties":{"displayName":{"description":"Name of a Cloud Function.","type":"string"},"location":{"description":"Location in which the Cloud Function is deployed.","type":"string"},"uri":{"description":"URI of a Cloud Function.","type":"string"},"versionId":{"description":"Latest successfully deployed version id of the Cloud Function.","format":"int64","type":"string"}},"type":"object"},"CloudRunRevisionEndpoint":{"description":"Wrapper for Cloud Run revision attributes.","properties":{"uri":{"description":"A [Cloud Run](https://cloud.google.com/run) [revision](https://cloud.google.com/run/docs/reference/rest/v1/namespaces.revisions/get) URI. The format is: projects/{project}/locations/{location}/revisions/{revision}","type":"string"}},"type":"object"},"CloudRunRevisionInfo":{"description":"For display only. Metadata associated with a Cloud Run revision.","properties":{"displayName":{"description":"Name of a Cloud Run revision.","type":"string"},"location":{"description":"Location in which this revision is deployed.","type":"string"},"serviceName":{"deprecated":true,"description":"ID of Cloud Run Service this revision belongs to.","type":"string"},"serviceUri":{"description":"URI of Cloud Run service this revision belongs to.","type":"string"},"uri":{"description":"URI of a Cloud Run revision.","type":"string"}},"type":"object"},"CloudSQLInstanceInfo":{"description":"For display only. Metadata associated with a Cloud SQL instance.","properties":{"displayName":{"description":"Name of a Cloud SQL instance.","type":"string"},"externalIp":{"description":"External IP address of a Cloud SQL instance.","type":"string"},"internalIp":{"description":"Internal IP address of a Cloud SQL instance.","type":"string"},"networkUri":{"description":"URI of a Cloud SQL instance network or empty string if the instance does not have one.","type":"string"},"region":{"description":"Region in which the Cloud SQL instance is running.","type":"string"},"uri":{"description":"URI of a Cloud SQL instance.","type":"string"}},"type":"object"},"ConnectivityTest":{"description":"A Connectivity Test for a network reachability analysis.","properties":{"createTime":{"description":"Output only. The time the test was created.","format":"google-datetime","readOnly":true,"type":"string"},"description":{"description":"The user-supplied description of the Connectivity Test. Maximum of 512 characters.","type":"string"},"destination":{"$ref":"#/components/schemas/Endpoint","description":"Required. Destination specification of the Connectivity Test. You can use a combination of destination IP address, Compute Engine VM instance, or VPC network to uniquely identify the destination location. Even if the destination IP address is not unique, the source IP location is unique. Usually, the analysis can infer the destination endpoint from route information. If the destination you specify is a VM instance and the instance has multiple network interfaces, then you must also specify either a destination IP address or VPC network to identify the destination interface. A reachability analysis proceeds even if the destination location is ambiguous. However, the result can include endpoints that you don't intend to test."},"displayName":{"description":"Output only. The display name of a Connectivity Test.","readOnly":true,"type":"string"},"labels":{"additionalProperties":{"type":"string"},"description":"Resource labels to represent user-provided metadata.","type":"object"},"name":{"description":"Required. Unique name of the resource using the form: `projects/{project_id}/locations/global/connectivityTests/{test}`","type":"string"},"probingDetails":{"$ref":"#/components/schemas/ProbingDetails","description":"Output only. The probing details of this test from the latest run, present for applicable tests only. The details are updated when creating a new test, updating an existing test, or triggering a one-time rerun of an existing test.","readOnly":true},"protocol":{"description":"IP Protocol of the test. When not provided, \"TCP\" is assumed.","type":"string"},"reachabilityDetails":{"$ref":"#/components/schemas/ReachabilityDetails","description":"Output only. The reachability details of this test from the latest run. The details are updated when creating a new test, updating an existing test, or triggering a one-time rerun of an existing test.","readOnly":true},"relatedProjects":{"description":"Other projects that may be relevant for reachability analysis. This is applicable to scenarios where a test can cross project boundaries.","items":{"type":"string"},"type":"array"},"source":{"$ref":"#/components/schemas/Endpoint","description":"Required. Source specification of the Connectivity Test. You can use a combination of source IP address, virtual machine (VM) instance, or Compute Engine network to uniquely identify the source location. Examples: If the source IP address is an internal IP address within a Google Cloud Virtual Private Cloud (VPC) network, then you must also specify the VPC network. Otherwise, specify the VM instance, which already contains its internal IP address and VPC network information. If the source of the test is within an on-premises network, then you must provide the destination VPC network. If the source endpoint is a Compute Engine VM instance with multiple network interfaces, the instance itself is not sufficient to identify the endpoint. So, you must also specify the source IP address or VPC network. A reachability analysis proceeds even if the source location is ambiguous. However, the test result may include endpoints that you don't intend to test."},"updateTime":{"description":"Output only. The time the test's configuration was updated.","format":"google-datetime","readOnly":true,"type":"string"}},"type":"object"},"DeliverInfo":{"description":"Details of the final state \"deliver\" and associated resource.","properties":{"ipAddress":{"description":"IP address of the target (if applicable).","type":"string"},"resourceUri":{"description":"URI of the resource that the packet is delivered to.","type":"string"},"target":{"description":"Target type where the packet is delivered to.","enum":["TARGET_UNSPECIFIED","INSTANCE","INTERNET","GOOGLE_API","GKE_MASTER","CLOUD_SQL_INSTANCE","PSC_PUBLISHED_SERVICE","PSC_GOOGLE_API","PSC_VPC_SC","SERVERLESS_NEG","STORAGE_BUCKET","PRIVATE_NETWORK","CLOUD_FUNCTION","APP_ENGINE_VERSION","CLOUD_RUN_REVISION"],"type":"string"}},"type":"object"},"DropInfo":{"description":"Details of the final state \"drop\" and associated resource.","properties":{"cause":{"description":"Cause that the packet is dropped.","enum":["CAUSE_UNSPECIFIED","UNKNOWN_EXTERNAL_ADDRESS","FOREIGN_IP_DISALLOWED","FIREWALL_RULE","NO_ROUTE","ROUTE_BLACKHOLE","ROUTE_WRONG_NETWORK","ROUTE_NEXT_HOP_IP_ADDRESS_NOT_RESOLVED","ROUTE_NEXT_HOP_RESOURCE_NOT_FOUND","ROUTE_NEXT_HOP_INSTANCE_WRONG_NETWORK","ROUTE_NEXT_HOP_INSTANCE_NON_PRIMARY_IP","ROUTE_NEXT_HOP_FORWARDING_RULE_IP_MISMATCH","ROUTE_NEXT_HOP_VPN_TUNNEL_NOT_ESTABLISHED","ROUTE_NEXT_HOP_FORWARDING_RULE_TYPE_INVALID","NO_ROUTE_FROM_INTERNET_TO_PRIVATE_IPV6_ADDRESS","VPN_TUNNEL_LOCAL_SELECTOR_MISMATCH","VPN_TUNNEL_REMOTE_SELECTOR_MISMATCH","PRIVATE_TRAFFIC_TO_INTERNET","PRIVATE_GOOGLE_ACCESS_DISALLOWED","PRIVATE_GOOGLE_ACCESS_VIA_VPN_TUNNEL_UNSUPPORTED","NO_EXTERNAL_ADDRESS","UNKNOWN_INTERNAL_ADDRESS","FORWARDING_RULE_MISMATCH","FORWARDING_RULE_NO_INSTANCES","FIREWALL_BLOCKING_LOAD_BALANCER_BACKEND_HEALTH_CHECK","INSTANCE_NOT_RUNNING","GKE_CLUSTER_NOT_RUNNING","CLOUD_SQL_INSTANCE_NOT_RUNNING","TRAFFIC_TYPE_BLOCKED","GKE_MASTER_UNAUTHORIZED_ACCESS","CLOUD_SQL_INSTANCE_UNAUTHORIZED_ACCESS","DROPPED_INSIDE_GKE_SERVICE","DROPPED_INSIDE_CLOUD_SQL_SERVICE","GOOGLE_MANAGED_SERVICE_NO_PEERING","GOOGLE_MANAGED_SERVICE_NO_PSC_ENDPOINT","GKE_PSC_ENDPOINT_MISSING","CLOUD_SQL_INSTANCE_NO_IP_ADDRESS","GKE_CONTROL_PLANE_REGION_MISMATCH","PUBLIC_GKE_CONTROL_PLANE_TO_PRIVATE_DESTINATION","GKE_CONTROL_PLANE_NO_ROUTE","CLOUD_SQL_INSTANCE_NOT_CONFIGURED_FOR_EXTERNAL_TRAFFIC","PUBLIC_CLOUD_SQL_INSTANCE_TO_PRIVATE_DESTINATION","CLOUD_SQL_INSTANCE_NO_ROUTE","CLOUD_FUNCTION_NOT_ACTIVE","VPC_CONNECTOR_NOT_SET","VPC_CONNECTOR_NOT_RUNNING","FORWARDING_RULE_REGION_MISMATCH","PSC_CONNECTION_NOT_ACCEPTED","PSC_ENDPOINT_ACCESSED_FROM_PEERED_NETWORK","PSC_NEG_PRODUCER_ENDPOINT_NO_GLOBAL_ACCESS","PSC_NEG_PRODUCER_FORWARDING_RULE_MULTIPLE_PORTS","NO_NAT_SUBNETS_FOR_PSC_SERVICE_ATTACHMENT","HYBRID_NEG_NON_DYNAMIC_ROUTE_MATCHED","HYBRID_NEG_NON_LOCAL_DYNAMIC_ROUTE_MATCHED","CLOUD_RUN_REVISION_NOT_READY","DROPPED_INSIDE_PSC_SERVICE_PRODUCER","LOAD_BALANCER_HAS_NO_PROXY_SUBNET","CLOUD_NAT_NO_ADDRESSES"],"type":"string"},"destinationIp":{"description":"Destination IP address of the dropped packet (if relevant).","type":"string"},"region":{"description":"Region of the dropped packet (if relevant).","type":"string"},"resourceUri":{"description":"URI of the resource that caused the drop.","type":"string"},"sourceIp":{"description":"Source IP address of the dropped packet (if relevant).","type":"string"}},"type":"object"},"EdgeLocation":{"description":"Representation of a network edge location as per https://cloud.google.com/vpc/docs/edge-locations.","properties":{"metropolitanArea":{"description":"Name of the metropolitan area.","type":"string"}},"type":"object"},"Empty":{"description":"A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }","properties":{},"type":"object"},"Endpoint":{"description":"Source or destination of the Connectivity Test.","properties":{"appEngineVersion":{"$ref":"#/components/schemas/AppEngineVersionEndpoint","description":"An [App Engine](https://cloud.google.com/appengine) [service version](https://cloud.google.com/appengine/docs/admin-api/reference/rest/v1/apps.services.versions)."},"cloudFunction":{"$ref":"#/components/schemas/CloudFunctionEndpoint","description":"A [Cloud Function](https://cloud.google.com/functions)."},"cloudRunRevision":{"$ref":"#/components/schemas/CloudRunRevisionEndpoint","description":"A [Cloud Run](https://cloud.google.com/run) [revision](https://cloud.google.com/run/docs/reference/rest/v1/namespaces.revisions/get)"},"cloudSqlInstance":{"description":"A [Cloud SQL](https://cloud.google.com/sql) instance URI.","type":"string"},"forwardingRule":{"description":"A forwarding rule and its corresponding IP address represent the frontend configuration of a Google Cloud load balancer. Forwarding rules are also used for protocol forwarding, Private Service Connect and other network services to provide forwarding information in the control plane. Format: projects/{project}/global/forwardingRules/{id} or projects/{project}/regions/{region}/forwardingRules/{id}","type":"string"},"forwardingRuleTarget":{"description":"Output only. Specifies the type of the target of the forwarding rule.","enum":["FORWARDING_RULE_TARGET_UNSPECIFIED","INSTANCE","LOAD_BALANCER","VPN_GATEWAY","PSC"],"readOnly":true,"type":"string"},"gkeMasterCluster":{"description":"A cluster URI for [Google Kubernetes Engine master](https://cloud.google.com/kubernetes-engine/docs/concepts/cluster-architecture).","type":"string"},"instance":{"description":"A Compute Engine instance URI.","type":"string"},"ipAddress":{"description":"The IP address of the endpoint, which can be an external or internal IP.","type":"string"},"loadBalancerId":{"description":"Output only. ID of the load balancer the forwarding rule points to. Empty for forwarding rules not related to load balancers.","readOnly":true,"type":"string"},"loadBalancerType":{"description":"Output only. Type of the load balancer the forwarding rule points to.","enum":["LOAD_BALANCER_TYPE_UNSPECIFIED","HTTPS_ADVANCED_LOAD_BALANCER","HTTPS_LOAD_BALANCER","REGIONAL_HTTPS_LOAD_BALANCER","INTERNAL_HTTPS_LOAD_BALANCER","SSL_PROXY_LOAD_BALANCER","TCP_PROXY_LOAD_BALANCER","INTERNAL_TCP_PROXY_LOAD_BALANCER","NETWORK_LOAD_BALANCER","LEGACY_NETWORK_LOAD_BALANCER","TCP_UDP_INTERNAL_LOAD_BALANCER"],"readOnly":true,"type":"string"},"network":{"description":"A Compute Engine network URI.","type":"string"},"networkType":{"description":"Type of the network where the endpoint is located. Applicable only to source endpoint, as destination network type can be inferred from the source.","enum":["NETWORK_TYPE_UNSPECIFIED","GCP_NETWORK","NON_GCP_NETWORK"],"type":"string"},"port":{"description":"The IP protocol port of the endpoint. Only applicable when protocol is TCP or UDP.","format":"int32","type":"integer"},"projectId":{"description":"Project ID where the endpoint is located. The Project ID can be derived from the URI if you provide a VM instance or network URI. The following are two cases where you must provide the project ID: 1. Only the IP address is specified, and the IP address is within a Google Cloud project. 2. When you are using Shared VPC and the IP address that you provide is from the service project. In this case, the network that the IP address resides in is defined in the host project.","type":"string"}},"type":"object"},"EndpointInfo":{"description":"For display only. The specification of the endpoints for the test. EndpointInfo is derived from source and destination Endpoint and validated by the backend data plane model.","properties":{"destinationIp":{"description":"Destination IP address.","type":"string"},"destinationNetworkUri":{"description":"URI of the network where this packet is sent to.","type":"string"},"destinationPort":{"description":"Destination port. Only valid when protocol is TCP or UDP.","format":"int32","type":"integer"},"protocol":{"description":"IP protocol in string format, for example: \"TCP\", \"UDP\", \"ICMP\".","type":"string"},"sourceAgentUri":{"description":"URI of the source telemetry agent this packet originates from.","type":"string"},"sourceIp":{"description":"Source IP address.","type":"string"},"sourceNetworkUri":{"description":"URI of the network where this packet originates from.","type":"string"},"sourcePort":{"description":"Source port. Only valid when protocol is TCP or UDP.","format":"int32","type":"integer"}},"type":"object"},"Expr":{"description":"Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: \"Summary size limit\" description: \"Determines if a summary is less than 100 chars\" expression: \"document.summary.size() < 100\" Example (Equality): title: \"Requestor is owner\" description: \"Determines if requestor is the document owner\" expression: \"document.owner == request.auth.claims.email\" Example (Logic): title: \"Public documents\" description: \"Determine whether the document should be publicly visible\" expression: \"document.type != 'private' && document.type != 'internal'\" Example (Data Manipulation): title: \"Notification string\" description: \"Create a notification string with a timestamp.\" expression: \"'New message received at ' + string(document.create_time)\" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.","properties":{"description":{"description":"Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.","type":"string"},"expression":{"description":"Textual representation of an expression in Common Expression Language syntax.","type":"string"},"location":{"description":"Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.","type":"string"},"title":{"description":"Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.","type":"string"}},"type":"object"},"FirewallInfo":{"description":"For display only. Metadata associated with a VPC firewall rule, an implied VPC firewall rule, or a hierarchical firewall policy rule.","properties":{"action":{"description":"Possible values: ALLOW, DENY, APPLY_SECURITY_PROFILE_GROUP","type":"string"},"direction":{"description":"Possible values: INGRESS, EGRESS","type":"string"},"displayName":{"description":"The display name of the VPC firewall rule. This field is not applicable to hierarchical firewall policy rules.","type":"string"},"firewallRuleType":{"description":"The firewall rule's t