Package com.google.auth.oauth2
Class CredentialAccessBoundary.AccessBoundaryRule
java.lang.Object
com.google.auth.oauth2.CredentialAccessBoundary.AccessBoundaryRule
- Enclosing class:
CredentialAccessBoundary
Defines an upper bound of permissions on a particular resource.
The following snippet shows an AccessBoundaryRule that applies to the Cloud Storage bucket bucket-one to set the upper bound of permissions to those defined by the roles/storage.objectViewer role.
AccessBoundaryRule rule = AccessBoundaryRule.newBuilder()
.setAvailableResource("//storage.googleapis.com/projects/_/buckets/bucket-one")
.addAvailablePermission("inRole:roles/storage.objectViewer")
.build();
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionstatic final class
An optional condition that can be used as part of aCredentialAccessBoundary.AccessBoundaryRule
to further restrict permissions.static class
-
Field Summary
Fields -
Constructor Summary
ConstructorsConstructorDescriptionAccessBoundaryRule
(String availableResource, List<String> availablePermissions, CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition availabilityCondition) -
Method Summary
Modifier and TypeMethodDescription
-
Field Details
-
availableResource
-
availablePermissions
-
availabilityCondition
@Nullable private final CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition availabilityCondition
-
-
Constructor Details
-
AccessBoundaryRule
AccessBoundaryRule(String availableResource, List<String> availablePermissions, @Nullable CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition availabilityCondition)
-
-
Method Details
-
getAvailableResource
-
getAvailablePermissions
-
getAvailabilityCondition
@Nullable public CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition getAvailabilityCondition() -
newBuilder
-