diff --git a/gapic-libraries-bom/pom.xml b/gapic-libraries-bom/pom.xml
index 5652ee714f13..840164e9cbf0 100644
--- a/gapic-libraries-bom/pom.xml
+++ b/gapic-libraries-bom/pom.xml
@@ -16,7 +16,7 @@
+ * The identity type to use for the Reasoning Engine. + *+ * + * Protobuf enum {@code google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType} + */ + public enum IdentityType implements com.google.protobuf.ProtocolMessageEnum { + /** + * + * + *
+ * Default value. Use a custom service account if the `service_account` + * field is set, otherwise use the default Vertex AI Reasoning Engine + * Service Agent in the project. Same behavior as SERVICE_ACCOUNT. + *+ * + *
IDENTITY_TYPE_UNSPECIFIED = 0;
+ */
+ IDENTITY_TYPE_UNSPECIFIED(0),
+ /**
+ *
+ *
+ * + * Use a custom service account if the `service_account` field is set, + * otherwise use the default Vertex AI Reasoning Engine Service Agent in the + * project. + *+ * + *
SERVICE_ACCOUNT = 2;
+ */
+ SERVICE_ACCOUNT(2),
+ /**
+ *
+ *
+ * + * Use Agent Identity. The `service_account` field must not be set. + *+ * + *
AGENT_IDENTITY = 3;
+ */
+ AGENT_IDENTITY(3),
+ UNRECOGNIZED(-1),
+ ;
+
+ static {
+ com.google.protobuf.RuntimeVersion.validateProtobufGencodeVersion(
+ com.google.protobuf.RuntimeVersion.RuntimeDomain.PUBLIC,
+ /* major= */ 4,
+ /* minor= */ 33,
+ /* patch= */ 2,
+ /* suffix= */ "",
+ "IdentityType");
+ }
+
+ /**
+ *
+ *
+ * + * Default value. Use a custom service account if the `service_account` + * field is set, otherwise use the default Vertex AI Reasoning Engine + * Service Agent in the project. Same behavior as SERVICE_ACCOUNT. + *+ * + *
IDENTITY_TYPE_UNSPECIFIED = 0;
+ */
+ public static final int IDENTITY_TYPE_UNSPECIFIED_VALUE = 0;
+
+ /**
+ *
+ *
+ * + * Use a custom service account if the `service_account` field is set, + * otherwise use the default Vertex AI Reasoning Engine Service Agent in the + * project. + *+ * + *
SERVICE_ACCOUNT = 2;
+ */
+ public static final int SERVICE_ACCOUNT_VALUE = 2;
+
+ /**
+ *
+ *
+ * + * Use Agent Identity. The `service_account` field must not be set. + *+ * + *
AGENT_IDENTITY = 3;
+ */
+ public static final int AGENT_IDENTITY_VALUE = 3;
+
+ public final int getNumber() {
+ if (this == UNRECOGNIZED) {
+ throw new java.lang.IllegalArgumentException(
+ "Can't get the number of an unknown enum value.");
+ }
+ return value;
+ }
+
+ /**
+ * @param value The numeric wire value of the corresponding enum entry.
+ * @return The enum associated with the given numeric wire value.
+ * @deprecated Use {@link #forNumber(int)} instead.
+ */
+ @java.lang.Deprecated
+ public static IdentityType valueOf(int value) {
+ return forNumber(value);
+ }
+
+ /**
+ * @param value The numeric wire value of the corresponding enum entry.
+ * @return The enum associated with the given numeric wire value.
+ */
+ public static IdentityType forNumber(int value) {
+ switch (value) {
+ case 0:
+ return IDENTITY_TYPE_UNSPECIFIED;
+ case 2:
+ return SERVICE_ACCOUNT;
+ case 3:
+ return AGENT_IDENTITY;
+ default:
+ return null;
+ }
+ }
+
+ public static com.google.protobuf.Internal.EnumLiteMap+ * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ @java.lang.Override
+ public int getIdentityTypeValue() {
+ return identityType_;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ @java.lang.Override
+ public com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType getIdentityType() {
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType result =
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.forNumber(identityType_);
+ return result == null
+ ? com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.UNRECOGNIZED
+ : result;
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -12940,6 +13169,11 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
11,
(com.google.cloud.aiplatform.v1.ReasoningEngineSpec.SourceCodeSpec) deploymentSource_);
}
+ if (identityType_
+ != com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.IDENTITY_TYPE_UNSPECIFIED
+ .getNumber()) {
+ output.writeEnum(12, identityType_);
+ }
if (deploymentSourceCase_ == 15) {
output.writeMessage(
15, (com.google.cloud.aiplatform.v1.ReasoningEngineSpec.ContainerSpec) deploymentSource_);
@@ -12975,6 +13209,11 @@ public int getSerializedSize() {
(com.google.cloud.aiplatform.v1.ReasoningEngineSpec.SourceCodeSpec)
deploymentSource_);
}
+ if (identityType_
+ != com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.IDENTITY_TYPE_UNSPECIFIED
+ .getNumber()) {
+ size += com.google.protobuf.CodedOutputStream.computeEnumSize(12, identityType_);
+ }
if (deploymentSourceCase_ == 15) {
size +=
com.google.protobuf.CodedOutputStream.computeMessageSize(
@@ -13011,6 +13250,7 @@ public boolean equals(final java.lang.Object obj) {
}
if (!getClassMethodsList().equals(other.getClassMethodsList())) return false;
if (!getAgentFramework().equals(other.getAgentFramework())) return false;
+ if (identityType_ != other.identityType_) return false;
if (!getDeploymentSourceCase().equals(other.getDeploymentSourceCase())) return false;
switch (deploymentSourceCase_) {
case 11:
@@ -13051,6 +13291,8 @@ public int hashCode() {
}
hash = (37 * hash) + AGENT_FRAMEWORK_FIELD_NUMBER;
hash = (53 * hash) + getAgentFramework().hashCode();
+ hash = (37 * hash) + IDENTITY_TYPE_FIELD_NUMBER;
+ hash = (53 * hash) + identityType_;
switch (deploymentSourceCase_) {
case 11:
hash = (37 * hash) + SOURCE_CODE_SPEC_FIELD_NUMBER;
@@ -13239,6 +13481,7 @@ public Builder clear() {
}
bitField0_ = (bitField0_ & ~0x00000020);
agentFramework_ = "";
+ identityType_ = 0;
deploymentSourceCase_ = 0;
deploymentSource_ = null;
return this;
@@ -13310,6 +13553,9 @@ private void buildPartial0(com.google.cloud.aiplatform.v1.ReasoningEngineSpec re
if (((from_bitField0_ & 0x00000040) != 0)) {
result.agentFramework_ = agentFramework_;
}
+ if (((from_bitField0_ & 0x00000080) != 0)) {
+ result.identityType_ = identityType_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -13380,6 +13626,9 @@ public Builder mergeFrom(com.google.cloud.aiplatform.v1.ReasoningEngineSpec othe
bitField0_ |= 0x00000040;
onChanged();
}
+ if (other.identityType_ != 0) {
+ setIdentityTypeValue(other.getIdentityTypeValue());
+ }
switch (other.getDeploymentSourceCase()) {
case SOURCE_CODE_SPEC:
{
@@ -13467,6 +13716,12 @@ public Builder mergeFrom(
deploymentSourceCase_ = 11;
break;
} // case 90
+ case 96:
+ {
+ identityType_ = input.readEnum();
+ bitField0_ |= 0x00000080;
+ break;
+ } // case 96
case 122:
{
input.readMessage(
@@ -15161,6 +15416,129 @@ public Builder setAgentFrameworkBytes(com.google.protobuf.ByteString value) {
return this;
}
+ private int identityType_ = 0;
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ @java.lang.Override
+ public int getIdentityTypeValue() {
+ return identityType_;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @param value The enum numeric value on the wire for identityType to set.
+ * @return This builder for chaining.
+ */
+ public Builder setIdentityTypeValue(int value) {
+ identityType_ = value;
+ bitField0_ |= 0x00000080;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ @java.lang.Override
+ public com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType getIdentityType() {
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType result =
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.forNumber(identityType_);
+ return result == null
+ ? com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType.UNRECOGNIZED
+ : result;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @param value The identityType to set.
+ * @return This builder for chaining.
+ */
+ public Builder setIdentityType(
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ bitField0_ |= 0x00000080;
+ identityType_ = value.getNumber();
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearIdentityType() {
+ bitField0_ = (bitField0_ & ~0x00000080);
+ identityType_ = 0;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.aiplatform.v1.ReasoningEngineSpec)
}
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/java/com/google/cloud/aiplatform/v1/ReasoningEngineSpecOrBuilder.java b/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/java/com/google/cloud/aiplatform/v1/ReasoningEngineSpecOrBuilder.java
index ca1f8a92a605..60e10338a690 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/java/com/google/cloud/aiplatform/v1/ReasoningEngineSpecOrBuilder.java
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/java/com/google/cloud/aiplatform/v1/ReasoningEngineSpecOrBuilder.java
@@ -358,5 +358,41 @@ public interface ReasoningEngineSpecOrBuilder
*/
com.google.protobuf.ByteString getAgentFrameworkBytes();
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ int getIdentityTypeValue();
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ com.google.cloud.aiplatform.v1.ReasoningEngineSpec.IdentityType getIdentityType();
+
com.google.cloud.aiplatform.v1.ReasoningEngineSpec.DeploymentSourceCase getDeploymentSourceCase();
}
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/proto/google/cloud/aiplatform/v1/reasoning_engine.proto b/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/proto/google/cloud/aiplatform/v1/reasoning_engine.proto
index e17271219082..80c8b3bad95d 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/proto/google/cloud/aiplatform/v1/reasoning_engine.proto
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1/src/main/proto/google/cloud/aiplatform/v1/reasoning_engine.proto
@@ -210,6 +210,22 @@ message ReasoningEngineSpec {
string image_uri = 1 [(google.api.field_behavior) = REQUIRED];
}
+ // The identity type to use for the Reasoning Engine.
+ enum IdentityType {
+ // Default value. Use a custom service account if the `service_account`
+ // field is set, otherwise use the default Vertex AI Reasoning Engine
+ // Service Agent in the project. Same behavior as SERVICE_ACCOUNT.
+ IDENTITY_TYPE_UNSPECIFIED = 0;
+
+ // Use a custom service account if the `service_account` field is set,
+ // otherwise use the default Vertex AI Reasoning Engine Service Agent in the
+ // project.
+ SERVICE_ACCOUNT = 2;
+
+ // Use Agent Identity. The `service_account` field must not be set.
+ AGENT_IDENTITY = 3;
+ }
+
// Defines the source for the deployment.
// The `package_spec` field should not be set if `deployment_source` is
// specified.
@@ -248,6 +264,12 @@ message ReasoningEngineSpec {
// Currently supported values: "google-adk", "langchain", "langgraph", "ag2",
// "llama-index", "custom".
string agent_framework = 5 [(google.api.field_behavior) = OPTIONAL];
+
+ // Optional. The identity type to use for the Reasoning Engine. If not
+ // specified, the `service_account` field will be used if set, otherwise the
+ // default Vertex AI Reasoning Engine Service Agent in the project will be
+ // used.
+ IdentityType identity_type = 12 [(google.api.field_behavior) = OPTIONAL];
}
// ReasoningEngine provides a customizable runtime for models to determine
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineProto.java b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineProto.java
index 86fb0a49e7b2..b18f36db06b4 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineProto.java
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineProto.java
@@ -153,7 +153,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "v_var.proto\0328google/cloud/aiplatform/v1b"
+ "eta1/service_networking.proto\032\036google/pr"
+ "otobuf/duration.proto\032\034google/protobuf/s"
- + "truct.proto\032\037google/protobuf/timestamp.proto\"\272\023\n"
+ + "truct.proto\032\037google/protobuf/timestamp.proto\"\361\024\n"
+ "\023ReasoningEngineSpec\022_\n"
+ "\020source_code_spec\030\013 \001(\0132C.google.cloud.aiplatform"
+ ".v1beta1.ReasoningEngineSpec.SourceCodeSpecH\000\022\\\n"
@@ -165,23 +165,26 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\017deployment_spec\030\004 \001(\0132C.google.cloud.aiplatform.v"
+ "1beta1.ReasoningEngineSpec.DeploymentSpecB\003\340A\001\0223\n\r"
+ "class_methods\030\003 \003(\0132\027.google.protobuf.StructB\003\340A\001\022\034\n"
- + "\017agent_framework\030\005 \001(\tB\003\340A\001\032\230\001\n"
+ + "\017agent_framework\030\005 \001(\tB\003\340A\001\022]\n\r"
+ + "identity_type\030\014 \001(\0162A.googl"
+ + "e.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityTypeB\003\340A\001\032\230\001\n"
+ "\013PackageSpec\022\"\n"
+ "\025pickle_object_gcs_uri\030\001 \001(\tB\003\340A\001\022%\n"
+ "\030dependency_files_gcs_uri\030\002 \001(\tB\003\340A\001\022!\n"
+ "\024requirements_gcs_uri\030\003 \001(\tB\003\340A\001\022\033\n"
+ "\016python_version\030\004 \001(\tB\003\340A\001\032\302\004\n"
+ "\016DeploymentSpec\0229\n"
- + "\003env\030\001 \003(\0132\'.g"
- + "oogle.cloud.aiplatform.v1beta1.EnvVarB\003\340A\001\022F\n\n"
- + "secret_env\030\002"
- + " \003(\0132-.google.cloud.aiplatform.v1beta1.SecretEnvVarB\003\340A\001\022V\n"
- + "\024psc_interface_config\030\004 \001(\01323.google.cloud."
- + "aiplatform.v1beta1.PscInterfaceConfigB\003\340A\001\022\037\n\r"
+ + "\003env\030\001"
+ + " \003(\0132\'.google.cloud.aiplatform.v1beta1.EnvVarB\003\340A\001\022F\n\n"
+ + "secret_env\030\002 \003(\0132-."
+ + "google.cloud.aiplatform.v1beta1.SecretEnvVarB\003\340A\001\022V\n"
+ + "\024psc_interface_config\030\004 \001(\0132"
+ + "3.google.cloud.aiplatform.v1beta1.PscInterfaceConfigB\003\340A\001\022\037\n\r"
+ "min_instances\030\005 \001(\005B\003\340A\001H\000\210\001\001\022\037\n\r"
+ "max_instances\030\006 \001(\005B\003\340A\001H\001\210\001\001\022u\n"
- + "\017resource_limits\030\007 \003(\0132W.google.cloud.aiplatform."
- + "v1beta1.ReasoningEngineSpec.DeploymentSpec.ResourceLimitsEntryB\003\340A\001\022\'\n"
+ + "\017resource_limits\030\007 \003(\0132W.google.cl"
+ + "oud.aiplatform.v1beta1.ReasoningEngineSp"
+ + "ec.DeploymentSpec.ResourceLimitsEntryB\003\340A\001\022\'\n"
+ "\025container_concurrency\030\010 \001(\005B\003\340A\001H\002\210\001\001\0325\n"
+ "\023ResourceLimitsEntry\022\013\n"
+ "\003key\030\001 \001(\t\022\r\n"
@@ -190,20 +193,20 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\016_max_instancesB\030\n"
+ "\026_container_concurrency\032\373\010\n"
+ "\016SourceCodeSpec\022i\n\r"
- + "inline_source\030\001 \001(\0132P.google.clo"
- + "ud.aiplatform.v1beta1.ReasoningEngineSpec.SourceCodeSpec.InlineSourceH\000\022~\n"
- + "\030developer_connect_source\030\003 \001(\0132Z.google.cloud"
- + ".aiplatform.v1beta1.ReasoningEngineSpec."
- + "SourceCodeSpec.DeveloperConnectSourceH\000\022e\n"
- + "\013python_spec\030\002 \001(\0132N.google.cloud.aipl"
- + "atform.v1beta1.ReasoningEngineSpec.SourceCodeSpec.PythonSpecH\001\022h\n\n"
- + "image_spec\030\005 \001(\0132M.google.cloud.aiplatform.v1beta1.Rea"
- + "soningEngineSpec.SourceCodeSpec.ImageSpecB\003\340A\001H\001\032.\n"
+ + "inline_source\030\001 \001(\0132P.google.cloud.aiplatform.v1beta1.Rea"
+ + "soningEngineSpec.SourceCodeSpec.InlineSourceH\000\022~\n"
+ + "\030developer_connect_source\030\003 \001(\0132Z.google.cloud.aiplatform.v1beta1.Reaso"
+ + "ningEngineSpec.SourceCodeSpec.DeveloperConnectSourceH\000\022e\n"
+ + "\013python_spec\030\002 \001(\0132N.go"
+ + "ogle.cloud.aiplatform.v1beta1.ReasoningEngineSpec.SourceCodeSpec.PythonSpecH\001\022h\n"
+ + "\n"
+ + "image_spec\030\005 \001(\0132M.google.cloud.aiplatf"
+ + "orm.v1beta1.ReasoningEngineSpec.SourceCodeSpec.ImageSpecB\003\340A\001H\001\032.\n"
+ "\014InlineSource\022\036\n"
+ "\016source_archive\030\001 \001(\014B\006\340A\002\340A\004\032\264\001\n"
+ "\tImageSpec\022u\n\n"
- + "build_args\030\001 \003(\0132\\.google.cloud.aiplatform.v1b"
- + "eta1.ReasoningEngineSpec.SourceCodeSpec.ImageSpec.BuildArgsEntryB\003\340A\001\0320\n"
+ + "build_args\030\001 \003(\0132\\.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec."
+ + "SourceCodeSpec.ImageSpec.BuildArgsEntryB\003\340A\001\0320\n"
+ "\016BuildArgsEntry\022\013\n"
+ "\003key\030\001 \001(\t\022\r\n"
+ "\005value\030\002 \001(\t:\0028\001\032\231\001\n"
@@ -213,8 +216,8 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\003dir\030\002 \001(\tB\003\340A\002\022\025\n"
+ "\010revision\030\003 \001(\tB\003\340A\002\032\211\001\n"
+ "\026DeveloperConnectSource\022o\n"
- + "\006config\030\001 \001(\0132Z.google.cloud.aiplatform.v1beta1.Reasoni"
- + "ngEngineSpec.SourceCodeSpec.DeveloperConnectConfigB\003\340A\002\032\202\001\n\n"
+ + "\006config\030\001 \001(\0132Z.google.cloud.aiplatform."
+ + "v1beta1.ReasoningEngineSpec.SourceCodeSpec.DeveloperConnectConfigB\003\340A\002\032\202\001\n\n"
+ "PythonSpec\022\024\n"
+ "\007version\030\001 \001(\tB\003\340A\001\022\036\n"
+ "\021entrypoint_module\030\002 \001(\tB\003\340A\001\022\036\n"
@@ -223,35 +226,41 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\006sourceB\017\n\r"
+ "language_spec\032\'\n\r"
+ "ContainerSpec\022\026\n"
- + "\timage_uri\030\001 \001(\tB\003\340A\002B\023\n"
+ + "\timage_uri\030\001 \001(\tB\003\340A\002\"V\n"
+ + "\014IdentityType\022\035\n"
+ + "\031IDENTITY_TYPE_UNSPECIFIED\020\000\022\023\n"
+ + "\017SERVICE_ACCOUNT\020\002\022\022\n"
+ + "\016AGENT_IDENTITY\020\003B\023\n"
+ "\021deployment_sourceB\022\n"
+ "\020_service_account\"\377\n\n"
+ "\017ReasoningEngine\022\021\n"
+ "\004name\030\001 \001(\tB\003\340A\010\022\031\n"
+ "\014display_name\030\002 \001(\tB\003\340A\002\022\030\n"
+ "\013description\030\007 \001(\tB\003\340A\001\022G\n"
- + "\004spec\030\003 "
- + "\001(\01324.google.cloud.aiplatform.v1beta1.ReasoningEngineSpecB\003\340A\001\0224\n"
+ + "\004spec\030\003 \001(\01324.google.clou"
+ + "d.aiplatform.v1beta1.ReasoningEngineSpecB\003\340A\001\0224\n"
+ "\013create_time\030\004 \001(\0132\032.google.protobuf.TimestampB\003\340A\003\0224\n"
+ "\013update_time\030\005"
+ " \001(\0132\032.google.protobuf.TimestampB\003\340A\003\022\021\n"
+ "\004etag\030\006 \001(\tB\003\340A\001\022V\n"
- + "\014context_spec\030\t"
- + " \001(\0132;.google.cloud.aiplatform.v1beta1.ReasoningEngineContextSpecB\003\340A\001\022H\n"
+ + "\014context_spec\030\t \001(\0132;.goo"
+ + "gle.cloud.aiplatform.v1beta1.ReasoningEngineContextSpecB\003\340A\001\022H\n"
+ "\017encryption_spec\030\013"
+ " \001(\0132/.google.cloud.aiplatform.v1beta1.EncryptionSpec\022L\n"
- + "\006labels\030\021"
- + " \003(\0132<.google.cloud.aiplatform.v1beta1.ReasoningEngine.LabelsEntry\022[\n"
- + "\016traffic_config\030\024 \001(\0132>.google.cloud.aiplatform."
- + "v1beta1.ReasoningEngine.TrafficConfigB\003\340A\001\032\275\004\n\r"
+ + "\006labels\030\021 \003(\0132<.google."
+ + "cloud.aiplatform.v1beta1.ReasoningEngine.LabelsEntry\022[\n"
+ + "\016traffic_config\030\024 \001(\0132>.g"
+ + "oogle.cloud.aiplatform.v1beta1.ReasoningEngine.TrafficConfigB\003\340A\001\032\275\004\n\r"
+ "TrafficConfig\022v\n"
- + "\024traffic_split_manual\030\022 \001(\0132Q.google.cloud.aiplatform.v1b"
- + "eta1.ReasoningEngine.TrafficConfig.TrafficSplitManualB\003\340A\001H\000\022\203\001\n"
- + "\033traffic_split_always_latest\030\023 \001(\0132W.google.cloud.aiplat"
- + "form.v1beta1.ReasoningEngine.TrafficConfig.TrafficSplitAlwaysLatestB\003\340A\001H\000\032\200\002\n"
+ + "\024traffic_split_manual\030\022 \001(\0132Q.goog"
+ + "le.cloud.aiplatform.v1beta1.ReasoningEng"
+ + "ine.TrafficConfig.TrafficSplitManualB\003\340A\001H\000\022\203\001\n"
+ + "\033traffic_split_always_latest\030\023 \001("
+ + "\0132W.google.cloud.aiplatform.v1beta1.Reas"
+ + "oningEngine.TrafficConfig.TrafficSplitAlwaysLatestB\003\340A\001H\000\032\200\002\n"
+ "\022TrafficSplitManual\022i\n"
- + "\007targets\030\001 \003(\0132X.google.cloud.aiplatform.v1beta1.ReasoningEn"
- + "gine.TrafficConfig.TrafficSplitManual.Target\032\177\n"
+ + "\007targets\030\001 \003(\0132X.google.cloud.aiplatf"
+ + "orm.v1beta1.ReasoningEngine.TrafficConfig.TrafficSplitManual.Target\032\177\n"
+ "\006Target\022_\n"
+ "\025runtime_revision_name\030\001 \001(\tB@\340A\002\372A:\n"
+ "8aiplatform.googleapis.com/ReasoningEngineRuntimeRevision\022\024\n"
@@ -261,27 +270,26 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\013LabelsEntry\022\013\n"
+ "\003key\030\001 \001(\t\022\r\n"
+ "\005value\030\002 \001(\t:\0028\001:\237\001\352A\233\001\n"
- + ")aiplatform.googleapis.com/ReasoningEngine\022Kpro"
- + "jects/{project}/locations/{location}/rea"
- + "soningEngines/{reasoning_engine}*\020reasoningEngines2\017reasoningEngine\"\354\010\n"
+ + ")aiplatform.googleapis.com/ReasoningEngine\022Kprojects/{project}/l"
+ + "ocations/{location}/reasoningEngines/{re"
+ + "asoning_engine}*\020reasoningEngines2\017reasoningEngine\"\354\010\n"
+ "\032ReasoningEngineContextSpec\022m\n"
- + "\022memory_bank_config\030\001 \001(\0132L.google.cloud.aiplatform.v1beta1"
- + ".ReasoningEngineContextSpec.MemoryBankConfigB\003\340A\001\032\336\007\n"
+ + "\022memory_bank_config\030\001 \001(\0132L.google.c"
+ + "loud.aiplatform.v1beta1.ReasoningEngineContextSpec.MemoryBankConfigB\003\340A\001\032\336\007\n"
+ "\020MemoryBankConfig\022}\n"
- + "\021generation_config\030\001 \001(\0132].google.cloud.aiplatf"
- + "orm.v1beta1.ReasoningEngineContextSpec.M"
- + "emoryBankConfig.GenerationConfigB\003\340A\001\022\212\001\n"
- + "\030similarity_search_config\030\002 \001(\0132c.googl"
- + "e.cloud.aiplatform.v1beta1.ReasoningEngi"
- + "neContextSpec.MemoryBankConfig.SimilaritySearchConfigB\003\340A\001\022o\n\n"
- + "ttl_config\030\005 \001(\0132V.google.cloud.aiplatform.v1beta1.Reasoni"
- + "ngEngineContextSpec.MemoryBankConfig.TtlConfigB\003\340A\001\032\236\003\n"
+ + "\021generation_config\030\001 \001(\0132].google.cloud.aiplatform.v1beta1.Reaso"
+ + "ningEngineContextSpec.MemoryBankConfig.GenerationConfigB\003\340A\001\022\212\001\n"
+ + "\030similarity_search_config\030\002 \001(\0132c.google.cloud.aiplatfor"
+ + "m.v1beta1.ReasoningEngineContextSpec.Mem"
+ + "oryBankConfig.SimilaritySearchConfigB\003\340A\001\022o\n\n"
+ + "ttl_config\030\005 \001(\0132V.google.cloud.aip"
+ + "latform.v1beta1.ReasoningEngineContextSpec.MemoryBankConfig.TtlConfigB\003\340A\001\032\236\003\n"
+ "\tTtlConfig\0225\n"
+ "\013default_ttl\030\001"
+ " \001(\0132\031.google.protobuf.DurationB\003\340A\001H\000\022\214\001\n"
- + "\023granular_ttl_config\030\002 \001(\0132h.google."
- + "cloud.aiplatform.v1beta1.ReasoningEngine"
- + "ContextSpec.MemoryBankConfig.TtlConfig.GranularTtlConfigB\003\340A\001H\000\032\303\001\n"
+ + "\023granular_ttl_config\030\002 \001(\0132h.google.cloud.aiplatform."
+ + "v1beta1.ReasoningEngineContextSpec.Memor"
+ + "yBankConfig.TtlConfig.GranularTtlConfigB\003\340A\001H\000\032\303\001\n"
+ "\021GranularTtlConfig\0222\n\n"
+ "create_ttl\030\001 \001(\0132\031.google.protobuf.DurationB\003\340A\001\022<\n"
+ "\024generate_created_ttl\030\002"
@@ -295,14 +303,14 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\026SimilaritySearchConfig\022C\n"
+ "\017embedding_model\030\001 \001(\tB*\340A\002\372A$\n"
+ "\"aiplatform.googleapis.com/EndpointB\215\003\n"
- + "#com.google.cloud.aiplatform.v1beta1B\024ReasoningEngineProtoP\001ZCcloud.google"
- + ".com/go/aiplatform/apiv1beta1/aiplatform"
- + "pb;aiplatformpb\252\002\037Google.Cloud.AIPlatfor"
- + "m.V1Beta1\312\002\037Google\\Cloud\\AIPlatform\\V1be"
- + "ta1\352\002\"Google::Cloud::AIPlatform::V1beta1\352A\236\001\n"
- + "1developerconnect.googleapis.com/GitRepositoryLink\022iprojects/{project}/loca"
- + "tions/{location}/connections/{connection}/gitRepositoryLinks/{git_repository_lin"
- + "k}b\006proto3"
+ + "#com.google.cloud.aiplatform.v1beta1B\024ReasoningEngi"
+ + "neProtoP\001ZCcloud.google.com/go/aiplatfor"
+ + "m/apiv1beta1/aiplatformpb;aiplatformpb\252\002"
+ + "\037Google.Cloud.AIPlatform.V1Beta1\312\002\037Googl"
+ + "e\\Cloud\\AIPlatform\\V1beta1\352\002\"Google::Cloud::AIPlatform::V1beta1\352A\236\001\n"
+ + "1developerconnect.googleapis.com/GitRepositoryLink\022i"
+ + "projects/{project}/locations/{location}/connections/{connection}/gitRepositoryLi"
+ + "nks/{git_repository_link}b\006proto3"
};
descriptor =
com.google.protobuf.Descriptors.FileDescriptor.internalBuildGeneratedFileFrom(
@@ -330,6 +338,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
"DeploymentSpec",
"ClassMethods",
"AgentFramework",
+ "IdentityType",
"DeploymentSource",
});
internal_static_google_cloud_aiplatform_v1beta1_ReasoningEngineSpec_PackageSpec_descriptor =
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpec.java b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpec.java
index aa958d816ead..b31c7a1408be 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpec.java
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpec.java
@@ -55,6 +55,7 @@ private ReasoningEngineSpec() {
serviceAccount_ = "";
classMethods_ = java.util.Collections.emptyList();
agentFramework_ = "";
+ identityType_ = 0;
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -72,6 +73,185 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.Builder.class);
}
+ /**
+ *
+ *
+ * + * The identity type to use for the Reasoning Engine. + *+ * + * Protobuf enum {@code google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType} + */ + public enum IdentityType implements com.google.protobuf.ProtocolMessageEnum { + /** + * + * + *
+ * Default value. Use a custom service account if the `service_account` + * field is set, otherwise use the default Vertex AI Reasoning Engine + * Service Agent in the project. Same behavior as SERVICE_ACCOUNT. + *+ * + *
IDENTITY_TYPE_UNSPECIFIED = 0;
+ */
+ IDENTITY_TYPE_UNSPECIFIED(0),
+ /**
+ *
+ *
+ * + * Use a custom service account if the `service_account` field is set, + * otherwise use the default Vertex AI Reasoning Engine Service Agent in the + * project. + *+ * + *
SERVICE_ACCOUNT = 2;
+ */
+ SERVICE_ACCOUNT(2),
+ /**
+ *
+ *
+ * + * Use Agent Identity. The `service_account` field must not be set. + *+ * + *
AGENT_IDENTITY = 3;
+ */
+ AGENT_IDENTITY(3),
+ UNRECOGNIZED(-1),
+ ;
+
+ static {
+ com.google.protobuf.RuntimeVersion.validateProtobufGencodeVersion(
+ com.google.protobuf.RuntimeVersion.RuntimeDomain.PUBLIC,
+ /* major= */ 4,
+ /* minor= */ 33,
+ /* patch= */ 2,
+ /* suffix= */ "",
+ "IdentityType");
+ }
+
+ /**
+ *
+ *
+ * + * Default value. Use a custom service account if the `service_account` + * field is set, otherwise use the default Vertex AI Reasoning Engine + * Service Agent in the project. Same behavior as SERVICE_ACCOUNT. + *+ * + *
IDENTITY_TYPE_UNSPECIFIED = 0;
+ */
+ public static final int IDENTITY_TYPE_UNSPECIFIED_VALUE = 0;
+
+ /**
+ *
+ *
+ * + * Use a custom service account if the `service_account` field is set, + * otherwise use the default Vertex AI Reasoning Engine Service Agent in the + * project. + *+ * + *
SERVICE_ACCOUNT = 2;
+ */
+ public static final int SERVICE_ACCOUNT_VALUE = 2;
+
+ /**
+ *
+ *
+ * + * Use Agent Identity. The `service_account` field must not be set. + *+ * + *
AGENT_IDENTITY = 3;
+ */
+ public static final int AGENT_IDENTITY_VALUE = 3;
+
+ public final int getNumber() {
+ if (this == UNRECOGNIZED) {
+ throw new java.lang.IllegalArgumentException(
+ "Can't get the number of an unknown enum value.");
+ }
+ return value;
+ }
+
+ /**
+ * @param value The numeric wire value of the corresponding enum entry.
+ * @return The enum associated with the given numeric wire value.
+ * @deprecated Use {@link #forNumber(int)} instead.
+ */
+ @java.lang.Deprecated
+ public static IdentityType valueOf(int value) {
+ return forNumber(value);
+ }
+
+ /**
+ * @param value The numeric wire value of the corresponding enum entry.
+ * @return The enum associated with the given numeric wire value.
+ */
+ public static IdentityType forNumber(int value) {
+ switch (value) {
+ case 0:
+ return IDENTITY_TYPE_UNSPECIFIED;
+ case 2:
+ return SERVICE_ACCOUNT;
+ case 3:
+ return AGENT_IDENTITY;
+ default:
+ return null;
+ }
+ }
+
+ public static com.google.protobuf.Internal.EnumLiteMap+ * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ @java.lang.Override
+ public int getIdentityTypeValue() {
+ return identityType_;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ @java.lang.Override
+ public com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType getIdentityType() {
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType result =
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType.forNumber(
+ identityType_);
+ return result == null
+ ? com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType.UNRECOGNIZED
+ : result;
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -13088,6 +13318,12 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
(com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.SourceCodeSpec)
deploymentSource_);
}
+ if (identityType_
+ != com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType
+ .IDENTITY_TYPE_UNSPECIFIED
+ .getNumber()) {
+ output.writeEnum(12, identityType_);
+ }
if (deploymentSourceCase_ == 15) {
output.writeMessage(
15,
@@ -13125,6 +13361,12 @@ public int getSerializedSize() {
(com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.SourceCodeSpec)
deploymentSource_);
}
+ if (identityType_
+ != com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType
+ .IDENTITY_TYPE_UNSPECIFIED
+ .getNumber()) {
+ size += com.google.protobuf.CodedOutputStream.computeEnumSize(12, identityType_);
+ }
if (deploymentSourceCase_ == 15) {
size +=
com.google.protobuf.CodedOutputStream.computeMessageSize(
@@ -13162,6 +13404,7 @@ public boolean equals(final java.lang.Object obj) {
}
if (!getClassMethodsList().equals(other.getClassMethodsList())) return false;
if (!getAgentFramework().equals(other.getAgentFramework())) return false;
+ if (identityType_ != other.identityType_) return false;
if (!getDeploymentSourceCase().equals(other.getDeploymentSourceCase())) return false;
switch (deploymentSourceCase_) {
case 11:
@@ -13202,6 +13445,8 @@ public int hashCode() {
}
hash = (37 * hash) + AGENT_FRAMEWORK_FIELD_NUMBER;
hash = (53 * hash) + getAgentFramework().hashCode();
+ hash = (37 * hash) + IDENTITY_TYPE_FIELD_NUMBER;
+ hash = (53 * hash) + identityType_;
switch (deploymentSourceCase_) {
case 11:
hash = (37 * hash) + SOURCE_CODE_SPEC_FIELD_NUMBER;
@@ -13391,6 +13636,7 @@ public Builder clear() {
}
bitField0_ = (bitField0_ & ~0x00000020);
agentFramework_ = "";
+ identityType_ = 0;
deploymentSourceCase_ = 0;
deploymentSource_ = null;
return this;
@@ -13462,6 +13708,9 @@ private void buildPartial0(com.google.cloud.aiplatform.v1beta1.ReasoningEngineSp
if (((from_bitField0_ & 0x00000040) != 0)) {
result.agentFramework_ = agentFramework_;
}
+ if (((from_bitField0_ & 0x00000080) != 0)) {
+ result.identityType_ = identityType_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -13533,6 +13782,9 @@ public Builder mergeFrom(com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec
bitField0_ |= 0x00000040;
onChanged();
}
+ if (other.identityType_ != 0) {
+ setIdentityTypeValue(other.getIdentityTypeValue());
+ }
switch (other.getDeploymentSourceCase()) {
case SOURCE_CODE_SPEC:
{
@@ -13620,6 +13872,12 @@ public Builder mergeFrom(
deploymentSourceCase_ = 11;
break;
} // case 90
+ case 96:
+ {
+ identityType_ = input.readEnum();
+ bitField0_ |= 0x00000080;
+ break;
+ } // case 96
case 122:
{
input.readMessage(
@@ -15335,6 +15593,130 @@ public Builder setAgentFrameworkBytes(com.google.protobuf.ByteString value) {
return this;
}
+ private int identityType_ = 0;
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ @java.lang.Override
+ public int getIdentityTypeValue() {
+ return identityType_;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @param value The enum numeric value on the wire for identityType to set.
+ * @return This builder for chaining.
+ */
+ public Builder setIdentityTypeValue(int value) {
+ identityType_ = value;
+ bitField0_ |= 0x00000080;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ @java.lang.Override
+ public com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType getIdentityType() {
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType result =
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType.forNumber(
+ identityType_);
+ return result == null
+ ? com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType.UNRECOGNIZED
+ : result;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @param value The identityType to set.
+ * @return This builder for chaining.
+ */
+ public Builder setIdentityType(
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ bitField0_ |= 0x00000080;
+ identityType_ = value.getNumber();
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearIdentityType() {
+ bitField0_ = (bitField0_ & ~0x00000080);
+ identityType_ = 0;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.aiplatform.v1beta1.ReasoningEngineSpec)
}
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpecOrBuilder.java b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpecOrBuilder.java
index aff3d93ca161..922d1828209f 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpecOrBuilder.java
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/java/com/google/cloud/aiplatform/v1beta1/ReasoningEngineSpecOrBuilder.java
@@ -365,6 +365,42 @@ public interface ReasoningEngineSpecOrBuilder
*/
com.google.protobuf.ByteString getAgentFrameworkBytes();
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The enum numeric value on the wire for identityType.
+ */
+ int getIdentityTypeValue();
+
+ /**
+ *
+ *
+ * + * Optional. The identity type to use for the Reasoning Engine. If not + * specified, the `service_account` field will be used if set, otherwise the + * default Vertex AI Reasoning Engine Service Agent in the project will be + * used. + *+ * + *
+ * .google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType identity_type = 12 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ *
+ * @return The identityType.
+ */
+ com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.IdentityType getIdentityType();
+
com.google.cloud.aiplatform.v1beta1.ReasoningEngineSpec.DeploymentSourceCase
getDeploymentSourceCase();
}
diff --git a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/proto/google/cloud/aiplatform/v1beta1/reasoning_engine.proto b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/proto/google/cloud/aiplatform/v1beta1/reasoning_engine.proto
index acbdbacf8f1e..919beef371bc 100644
--- a/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/proto/google/cloud/aiplatform/v1beta1/reasoning_engine.proto
+++ b/java-aiplatform/proto-google-cloud-aiplatform-v1beta1/src/main/proto/google/cloud/aiplatform/v1beta1/reasoning_engine.proto
@@ -212,6 +212,22 @@ message ReasoningEngineSpec {
string image_uri = 1 [(google.api.field_behavior) = REQUIRED];
}
+ // The identity type to use for the Reasoning Engine.
+ enum IdentityType {
+ // Default value. Use a custom service account if the `service_account`
+ // field is set, otherwise use the default Vertex AI Reasoning Engine
+ // Service Agent in the project. Same behavior as SERVICE_ACCOUNT.
+ IDENTITY_TYPE_UNSPECIFIED = 0;
+
+ // Use a custom service account if the `service_account` field is set,
+ // otherwise use the default Vertex AI Reasoning Engine Service Agent in the
+ // project.
+ SERVICE_ACCOUNT = 2;
+
+ // Use Agent Identity. The `service_account` field must not be set.
+ AGENT_IDENTITY = 3;
+ }
+
// Defines the source for the deployment.
// The `package_spec` field should not be set if `deployment_source` is
// specified.
@@ -250,6 +266,12 @@ message ReasoningEngineSpec {
// Currently supported values: "google-adk", "langchain", "langgraph", "ag2",
// "llama-index", "custom".
string agent_framework = 5 [(google.api.field_behavior) = OPTIONAL];
+
+ // Optional. The identity type to use for the Reasoning Engine. If not
+ // specified, the `service_account` field will be used if set, otherwise the
+ // default Vertex AI Reasoning Engine Service Agent in the project will be
+ // used.
+ IdentityType identity_type = 12 [(google.api.field_behavior) = OPTIONAL];
}
// ReasoningEngine provides a customizable runtime for models to determine
diff --git a/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/BinauthzManagementServiceV1Client.java b/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/BinauthzManagementServiceV1Client.java
index c75d09fcfdb0..3afabf8f696d 100644
--- a/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/BinauthzManagementServiceV1Client.java
+++ b/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/BinauthzManagementServiceV1Client.java
@@ -94,7 +94,7 @@
*
* UpdatePolicy
Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.
Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the request is malformed.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*CreateAttestor
Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the request is malformed, `ALREADY_EXISTS` if the [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*GetAttestor
Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*UpdateAttestor
Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*ListAttestors
Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if the project does not exist.
Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if the project does not exist.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*DeleteAttestor
Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*Sample code: * @@ -499,8 +499,8 @@ public final Resources.Policy updatePolicy(Resources.Policy policy) { * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and * returns a copy of the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is * always updated as a whole, to avoid race conditions with concurrent policy enforcement (or - * management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the - * request is malformed. + * management!) requests. Returns `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if + * the request is malformed. * *
Sample code: * @@ -532,8 +532,8 @@ public final Resources.Policy updatePolicy(Service.UpdatePolicyRequest request) * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and * returns a copy of the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is * always updated as a whole, to avoid race conditions with concurrent policy enforcement (or - * management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the - * request is malformed. + * management!) requests. Returns `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if + * the request is malformed. * *
Sample code:
*
@@ -563,8 +563,8 @@ public final UnaryCallable Sample code:
@@ -608,8 +608,8 @@ public final Resources.Attestor createAttestor(
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
* Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the
- * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project
- * does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
+ * project does not exist, `INVALID_ARGUMENT` if the request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
* Sample code:
@@ -653,8 +653,8 @@ public final Resources.Attestor createAttestor(
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
* Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the
- * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project
- * does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
+ * project does not exist, `INVALID_ARGUMENT` if the request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
* Sample code:
@@ -687,8 +687,8 @@ public final Resources.Attestor createAttestor(Service.CreateAttestorRequest req
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
* Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the
- * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project
- * does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * new [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
+ * project does not exist, `INVALID_ARGUMENT` if the request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
* Sample code:
@@ -721,7 +721,7 @@ public final Resources.Attestor createAttestor(Service.CreateAttestorRequest req
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -753,7 +753,7 @@ public final Resources.Attestor getAttestor(AttestorName name) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -783,7 +783,7 @@ public final Resources.Attestor getAttestor(String name) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -813,7 +813,7 @@ public final Resources.Attestor getAttestor(Service.GetAttestorRequest request)
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -843,7 +843,7 @@ public final UnaryCallable Sample code:
@@ -875,7 +875,7 @@ public final Resources.Attestor updateAttestor(Resources.Attestor attestor) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -905,7 +905,7 @@ public final Resources.Attestor updateAttestor(Service.UpdateAttestorRequest req
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -936,7 +936,7 @@ public final Resources.Attestor updateAttestor(Service.UpdateAttestorRequest req
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if
+ * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if
* the project does not exist.
*
* Sample code:
@@ -971,7 +971,7 @@ public final ListAttestorsPagedResponse listAttestors(ProjectName parent) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if
+ * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if
* the project does not exist.
*
* Sample code:
@@ -1004,7 +1004,7 @@ public final ListAttestorsPagedResponse listAttestors(String parent) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if
+ * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if
* the project does not exist.
*
* Sample code:
@@ -1039,7 +1039,7 @@ public final ListAttestorsPagedResponse listAttestors(Service.ListAttestorsReque
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if
+ * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if
* the project does not exist.
*
* Sample code:
@@ -1074,7 +1074,7 @@ public final ListAttestorsPagedResponse listAttestors(Service.ListAttestorsReque
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns INVALID_ARGUMENT if
+ * Lists [attestors][google.cloud.binaryauthorization.v1.Attestor]. Returns `INVALID_ARGUMENT` if
* the project does not exist.
*
* Sample code:
@@ -1116,7 +1116,7 @@ public final ListAttestorsPagedResponse listAttestors(Service.ListAttestorsReque
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -1148,7 +1148,7 @@ public final void deleteAttestor(AttestorName name) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -1178,7 +1178,7 @@ public final void deleteAttestor(String name) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
@@ -1208,7 +1208,7 @@ public final void deleteAttestor(Service.DeleteAttestorRequest request) {
// AUTO-GENERATED DOCUMENTATION AND METHOD.
/**
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
* Sample code:
diff --git a/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Client.java b/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Client.java
index eb0da67f6db6..502806b867d6 100644
--- a/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Client.java
+++ b/java-binary-authorization/google-cloud-binary-authorization/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Client.java
@@ -63,7 +63,7 @@
*
ValidateAttestationOccurrence
Returns whether the given Attestation for the given image URI was signed by the given Attestor
Returns whether the given `Attestation` for the given image URI was signed by the given `Attestor`
Request object method variants only take one parameter, a request object, which must be constructed before the call.
*Sample code: * @@ -218,7 +219,8 @@ public final Service.ValidateAttestationOccurrenceResponse validateAttestationOc // AUTO-GENERATED DOCUMENTATION AND METHOD. /** - * Returns whether the given Attestation for the given image URI was signed by the given Attestor + * Returns whether the given `Attestation` for the given image URI was signed by the given + * `Attestor` * *
Sample code:
*
diff --git a/java-binary-authorization/google-cloud-binary-authorization/src/test/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1ClientHttpJsonTest.java b/java-binary-authorization/google-cloud-binary-authorization/src/test/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1ClientHttpJsonTest.java
index f51e4a123be9..7b13de7a32e3 100644
--- a/java-binary-authorization/google-cloud-binary-authorization/src/test/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1ClientHttpJsonTest.java
+++ b/java-binary-authorization/google-cloud-binary-authorization/src/test/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1ClientHttpJsonTest.java
@@ -92,6 +92,7 @@ public void getPolicyTest() throws Exception {
.putAllIstioServiceIdentityAdmissionRules(new HashMap
- * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
- * image. There is at most one policy per project. All image admission
- * requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does not have one.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest
+ * to a container image, before the project is allowed to deploy that image.
+ * There is at most one policy per project. All image admission requests are
+ * permitted if a project has no policy.
+ * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does
+ * not have one.
*
*/
default void getPolicy(
@@ -481,11 +484,12 @@ default void getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of
+ * the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is
+ * always updated as a whole, to avoid race conditions with concurrent policy
+ * enforcement (or management!) requests. Returns `NOT_FOUND` if the project
+ * does not exist, `INVALID_ARGUMENT` if the request is malformed.
*
*/
default void updatePolicy(
@@ -501,9 +505,11 @@ default void updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and
+ * returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns
+ * `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the
+ * request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
*/
@@ -521,7 +527,8 @@ default void createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
default void getAttestor(
@@ -538,7 +545,8 @@ default void getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
default void updateAttestor(
@@ -555,7 +563,7 @@ default void updateAttestor(
*
*
* Lists [attestors][google.cloud.binaryauthorization.v1.Attestor].
- * Returns INVALID_ARGUMENT if the project does not exist.
+ * Returns `INVALID_ARGUMENT` if the project does not exist.
*
*/
default void listAttestors(
@@ -571,7 +579,8 @@ default void listAttestors(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
@@ -631,12 +640,15 @@ protected BinauthzManagementServiceV1Stub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
- * image. There is at most one policy per project. All image admission
- * requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does not have one.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest
+ * to a container image, before the project is allowed to deploy that image.
+ * There is at most one policy per project. All image admission requests are
+ * permitted if a project has no policy.
+ * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does
+ * not have one.
*
*/
public void getPolicy(
@@ -652,11 +664,12 @@ public void getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of
+ * the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is
+ * always updated as a whole, to avoid race conditions with concurrent policy
+ * enforcement (or management!) requests. Returns `NOT_FOUND` if the project
+ * does not exist, `INVALID_ARGUMENT` if the request is malformed.
*
*/
public void updatePolicy(
@@ -674,9 +687,11 @@ public void updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and
+ * returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns
+ * `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the
+ * request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
*/
@@ -696,7 +711,8 @@ public void createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public void getAttestor(
@@ -715,7 +731,8 @@ public void getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public void updateAttestor(
@@ -734,7 +751,7 @@ public void updateAttestor(
*
*
* Lists [attestors][google.cloud.binaryauthorization.v1.Attestor].
- * Returns INVALID_ARGUMENT if the project does not exist.
+ * Returns `INVALID_ARGUMENT` if the project does not exist.
*
*/
public void listAttestors(
@@ -752,7 +769,8 @@ public void listAttestors(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
@@ -794,12 +812,15 @@ protected BinauthzManagementServiceV1BlockingV2Stub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
- * image. There is at most one policy per project. All image admission
- * requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does not have one.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest
+ * to a container image, before the project is allowed to deploy that image.
+ * There is at most one policy per project. All image admission requests are
+ * permitted if a project has no policy.
+ * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does
+ * not have one.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy getPolicy(
@@ -813,11 +834,12 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy ge
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of
+ * the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is
+ * always updated as a whole, to avoid race conditions with concurrent policy
+ * enforcement (or management!) requests. Returns `NOT_FOUND` if the project
+ * does not exist, `INVALID_ARGUMENT` if the request is malformed.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy updatePolicy(
@@ -831,9 +853,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy up
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and
+ * returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns
+ * `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the
+ * request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
*/
@@ -849,7 +873,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor getAttestor(
@@ -864,7 +889,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor updateAttestor(
@@ -879,7 +905,7 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Lists [attestors][google.cloud.binaryauthorization.v1.Attestor].
- * Returns INVALID_ARGUMENT if the project does not exist.
+ * Returns `INVALID_ARGUMENT` if the project does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Service.ListAttestorsResponse
@@ -895,7 +921,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
@@ -936,12 +963,15 @@ protected BinauthzManagementServiceV1BlockingStub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
- * image. There is at most one policy per project. All image admission
- * requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does not have one.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest
+ * to a container image, before the project is allowed to deploy that image.
+ * There is at most one policy per project. All image admission requests are
+ * permitted if a project has no policy.
+ * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does
+ * not have one.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy getPolicy(
@@ -954,11 +984,12 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy ge
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of
+ * the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is
+ * always updated as a whole, to avoid race conditions with concurrent policy
+ * enforcement (or management!) requests. Returns `NOT_FOUND` if the project
+ * does not exist, `INVALID_ARGUMENT` if the request is malformed.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy updatePolicy(
@@ -971,9 +1002,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy up
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and
+ * returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns
+ * `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the
+ * request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
*/
@@ -989,7 +1022,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor getAttestor(
@@ -1003,7 +1037,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor updateAttestor(
@@ -1018,7 +1053,7 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* Lists [attestors][google.cloud.binaryauthorization.v1.Attestor].
- * Returns INVALID_ARGUMENT if the project does not exist.
+ * Returns `INVALID_ARGUMENT` if the project does not exist.
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Service.ListAttestorsResponse
@@ -1033,7 +1068,8 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
@@ -1074,12 +1110,15 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
- * image. There is at most one policy per project. All image admission
- * requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does not have one.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] that must attest
+ * to a container image, before the project is allowed to deploy that image.
+ * There is at most one policy per project. All image admission requests are
+ * permitted if a project has no policy.
+ * Gets the [policy][google.cloud.binaryauthorization.v1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1.Policy] if the project does
+ * not have one.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1095,11 +1134,12 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1.Policy], and returns a copy of
+ * the new [policy][google.cloud.binaryauthorization.v1.Policy]. A policy is
+ * always updated as a whole, to avoid race conditions with concurrent policy
+ * enforcement (or management!) requests. Returns `NOT_FOUND` if the project
+ * does not exist, `INVALID_ARGUMENT` if the request is malformed.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1115,9 +1155,11 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
+ * Creates an [attestor][google.cloud.binaryauthorization.v1.Attestor], and
+ * returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns
+ * `NOT_FOUND` if the project does not exist, `INVALID_ARGUMENT` if the
+ * request is malformed, `ALREADY_EXISTS` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] already exists.
*
*/
@@ -1135,7 +1177,8 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1152,7 +1195,8 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
+ * Returns `NOT_FOUND` if the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1169,7 +1213,7 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
* Lists [attestors][google.cloud.binaryauthorization.v1.Attestor].
- * Returns INVALID_ARGUMENT if the project does not exist.
+ * Returns `INVALID_ARGUMENT` if the project does not exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1185,7 +1229,8 @@ protected BinauthzManagementServiceV1FutureStub build(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor]. Returns NOT_FOUND if the
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Returns `NOT_FOUND` if the
* [attestor][google.cloud.binaryauthorization.v1.Attestor] does not exist.
*
*/
diff --git a/java-binary-authorization/grpc-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Grpc.java b/java-binary-authorization/grpc-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Grpc.java
index 1167d0daf624..0ed562058d4e 100644
--- a/java-binary-authorization/grpc-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Grpc.java
+++ b/java-binary-authorization/grpc-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/ValidationHelperV1Grpc.java
@@ -165,8 +165,8 @@ public interface AsyncService {
*
*
*
- * Returns whether the given Attestation for the given image URI
- * was signed by the given Attestor
+ * Returns whether the given `Attestation` for the given image URI
+ * was signed by the given `Attestor`
*
*/
default void validateAttestationOccurrence(
@@ -221,8 +221,8 @@ protected ValidationHelperV1Stub build(
*
*
*
- * Returns whether the given Attestation for the given image URI
- * was signed by the given Attestor
+ * Returns whether the given `Attestation` for the given image URI
+ * was signed by the given `Attestor`
*
*/
public void validateAttestationOccurrence(
@@ -264,8 +264,8 @@ protected ValidationHelperV1BlockingV2Stub build(
*
*
*
- * Returns whether the given Attestation for the given image URI
- * was signed by the given Attestor
+ * Returns whether the given `Attestation` for the given image URI
+ * was signed by the given `Attestor`
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Service
@@ -304,8 +304,8 @@ protected ValidationHelperV1BlockingStub build(
*
*
*
- * Returns whether the given Attestation for the given image URI
- * was signed by the given Attestor
+ * Returns whether the given `Attestation` for the given image URI
+ * was signed by the given `Attestor`
*
*/
public com.google.protos.google.cloud.binaryauthorization.v1.Service
@@ -342,8 +342,8 @@ protected ValidationHelperV1FutureStub build(
*
*
*
- * Returns whether the given Attestation for the given image URI
- * was signed by the given Attestor
+ * Returns whether the given `Attestation` for the given image URI
+ * was signed by the given `Attestor`
*
*/
public com.google.common.util.concurrent.ListenableFuture<
diff --git a/java-binary-authorization/grpc-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1Grpc.java b/java-binary-authorization/grpc-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1Grpc.java
index e5512fd38a75..89d07a40bc53 100644
--- a/java-binary-authorization/grpc-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1Grpc.java
+++ b/java-binary-authorization/grpc-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinauthzManagementServiceV1Beta1Grpc.java
@@ -458,12 +458,15 @@ public interface AsyncService {
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
+ * attest to a container image, before the project is allowed to deploy that
* image. There is at most one policy per project. All image admission
* requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project does not have one.
+ * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
+ * does not have one.
*
*/
default void getPolicy(
@@ -477,11 +480,13 @@ default void getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1beta1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
+ * copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
+ * A policy is always updated as a whole, to avoid race conditions with
+ * concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
+ * if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed.
*
*/
default void updatePolicy(
@@ -496,10 +501,13 @@ default void updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already exists.
+ * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
+ * and returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
+ * NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed, ALREADY_EXISTS if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
+ * exists.
*
*/
default void createAttestor(
@@ -515,7 +523,9 @@ default void createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
default void getAttestor(
@@ -531,7 +541,9 @@ default void getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
default void updateAttestor(
@@ -563,8 +575,10 @@ default void listAttestors(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
default void deleteAttestor(
@@ -624,12 +638,15 @@ protected BinauthzManagementServiceV1Beta1Stub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
+ * attest to a container image, before the project is allowed to deploy that
* image. There is at most one policy per project. All image admission
* requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project does not have one.
+ * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
+ * does not have one.
*
*/
public void getPolicy(
@@ -644,11 +661,13 @@ public void getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1beta1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
+ * copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
+ * A policy is always updated as a whole, to avoid race conditions with
+ * concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
+ * if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed.
*
*/
public void updatePolicy(
@@ -665,10 +684,13 @@ public void updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already exists.
+ * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
+ * and returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
+ * NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed, ALREADY_EXISTS if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
+ * exists.
*
*/
public void createAttestor(
@@ -686,7 +708,9 @@ public void createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public void getAttestor(
@@ -704,7 +728,9 @@ public void getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public void updateAttestor(
@@ -740,8 +766,10 @@ public void listAttestors(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public void deleteAttestor(
@@ -783,12 +811,15 @@ protected BinauthzManagementServiceV1Beta1BlockingV2Stub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
+ * attest to a container image, before the project is allowed to deploy that
* image. There is at most one policy per project. All image admission
* requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project does not have one.
+ * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
+ * does not have one.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy(
@@ -802,11 +833,13 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1beta1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
+ * copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
+ * A policy is always updated as a whole, to avoid race conditions with
+ * concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
+ * if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Policy updatePolicy(
@@ -820,10 +853,13 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already exists.
+ * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
+ * and returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
+ * NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed, ALREADY_EXISTS if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
+ * exists.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor createAttestor(
@@ -838,7 +874,9 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor(
@@ -853,7 +891,9 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor updateAttestor(
@@ -882,8 +922,10 @@ public com.google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse listAt
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.protobuf.Empty deleteAttestor(
@@ -923,12 +965,15 @@ protected BinauthzManagementServiceV1Beta1BlockingStub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
+ * attest to a container image, before the project is allowed to deploy that
* image. There is at most one policy per project. All image admission
* requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project does not have one.
+ * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
+ * does not have one.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy(
@@ -941,11 +986,13 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1beta1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
+ * copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
+ * A policy is always updated as a whole, to avoid race conditions with
+ * concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
+ * if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Policy updatePolicy(
@@ -958,10 +1005,13 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy updatePolicy(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already exists.
+ * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
+ * and returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
+ * NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed, ALREADY_EXISTS if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
+ * exists.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor createAttestor(
@@ -975,7 +1025,9 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor createAttestor(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor(
@@ -989,7 +1041,9 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.cloud.binaryauthorization.v1beta1.Attestor updateAttestor(
@@ -1016,8 +1070,10 @@ public com.google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse listAt
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.protobuf.Empty deleteAttestor(
@@ -1056,12 +1112,15 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must attest to
- * a container image, before the project is allowed to deploy that
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] specifies the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] that must
+ * attest to a container image, before the project is allowed to deploy that
* image. There is at most one policy per project. All image admission
* requests are permitted if a project has no policy.
- * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this project. Returns a default
- * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project does not have one.
+ * Gets the [policy][google.cloud.binaryauthorization.v1beta1.Policy] for this
+ * project. Returns a default
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] if the project
+ * does not have one.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1075,11 +1134,13 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
*
- * Creates or updates a project's [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a copy of the
- * new [policy][google.cloud.binaryauthorization.v1beta1.Policy]. A policy is always updated as a whole, to avoid race
- * conditions with concurrent policy enforcement (or management!)
- * requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT
- * if the request is malformed.
+ * Creates or updates a project's
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy], and returns a
+ * copy of the new [policy][google.cloud.binaryauthorization.v1beta1.Policy].
+ * A policy is always updated as a whole, to avoid race conditions with
+ * concurrent policy enforcement (or management!) requests. Returns NOT_FOUND
+ * if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1093,10 +1154,13 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
*
- * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor], and returns a copy of the new
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the project does not exist,
- * INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already exists.
+ * Creates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor],
+ * and returns a copy of the new
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns
+ * NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is
+ * malformed, ALREADY_EXISTS if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] already
+ * exists.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1111,7 +1175,9 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
* Gets an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1126,7 +1192,9 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
* Updates an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
- * Returns NOT_FOUND if the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture<
@@ -1155,8 +1223,10 @@ protected BinauthzManagementServiceV1Beta1FutureStub build(
*
*
*
- * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor]. Returns NOT_FOUND if the
- * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not exist.
+ * Deletes an [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Returns NOT_FOUND if the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] does not
+ * exist.
*
*/
public com.google.common.util.concurrent.ListenableFuture
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -245,7 +250,12 @@ public interface PolicyOrBuilder
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -271,7 +281,12 @@ public interface PolicyOrBuilder
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -293,7 +308,12 @@ public interface PolicyOrBuilder
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -318,7 +338,12 @@ public interface PolicyOrBuilder
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -338,8 +363,9 @@ public interface PolicyOrBuilder
*
*
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -352,8 +378,9 @@ public interface PolicyOrBuilder
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -373,8 +400,9 @@ public interface PolicyOrBuilder
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -390,8 +418,9 @@ public interface PolicyOrBuilder
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -410,8 +439,9 @@ public interface PolicyOrBuilder
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -426,7 +456,7 @@ public interface PolicyOrBuilder
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -440,7 +470,7 @@ public interface PolicyOrBuilder
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -461,7 +491,7 @@ public interface PolicyOrBuilder
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -478,7 +508,7 @@ public interface PolicyOrBuilder
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -498,7 +528,7 @@ public interface PolicyOrBuilder
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -514,9 +544,9 @@ public interface PolicyOrBuilder
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -531,9 +561,9 @@ public interface PolicyOrBuilder
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -555,9 +585,9 @@ public interface PolicyOrBuilder
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -575,9 +605,9 @@ public interface PolicyOrBuilder
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -598,9 +628,9 @@ public interface PolicyOrBuilder
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -700,13 +730,44 @@ public interface PolicyOrBuilder
*
*/
com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder();
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ java.lang.String getEtag();
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ com.google.protobuf.ByteString getEtagBytes();
}
/**
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] for container image binary authorization.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] for container image
+ * binary authorization.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.Policy}
@@ -737,6 +798,7 @@ private Policy() {
description_ = "";
globalPolicyEvaluationMode_ = 0;
admissionWhitelistPatterns_ = java.util.Collections.emptyList();
+ etag_ = "";
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -780,7 +842,7 @@ public enum GlobalPolicyEvaluationMode implements com.google.protobuf.ProtocolMe
*
*
*
- * Not specified: DISABLE is assumed.
+ * Not specified: `DISABLE` is assumed.
*
*
* GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED = 0;
@@ -823,7 +885,7 @@ public enum GlobalPolicyEvaluationMode implements com.google.protobuf.ProtocolMe
*
*
*
- * Not specified: DISABLE is assumed.
+ * Not specified: `DISABLE` is assumed.
*
*
* GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED = 0;
@@ -1258,7 +1320,12 @@ public int getClusterAdmissionRulesCount() {
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -1293,7 +1360,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -1318,7 +1390,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -1353,7 +1430,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -1427,8 +1509,9 @@ public int getKubernetesNamespaceAdmissionRulesCount() {
*
*
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -1457,8 +1540,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -1477,8 +1561,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -1507,8 +1592,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -1577,7 +1663,7 @@ public int getKubernetesServiceAccountAdmissionRulesCount() {
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -1607,7 +1693,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -1627,7 +1713,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -1657,7 +1743,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -1727,9 +1813,9 @@ public int getIstioServiceIdentityAdmissionRulesCount() {
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -1760,9 +1846,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -1783,9 +1869,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -1816,9 +1902,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -1963,6 +2049,63 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTime_ == null ? com.google.protobuf.Timestamp.getDefaultInstance() : updateTime_;
}
+ public static final int ETAG_FIELD_NUMBER = 11;
+
+ @SuppressWarnings("serial")
+ private volatile java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ @java.lang.Override
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ return (java.lang.String) ref;
+ } else {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ @java.lang.Override
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -2018,6 +2161,9 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
internalGetKubernetesNamespaceAdmissionRules(),
KubernetesNamespaceAdmissionRulesDefaultEntryHolder.defaultEntry,
10);
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ com.google.protobuf.GeneratedMessage.writeString(output, 11, etag_);
+ }
getUnknownFields().writeTo(output);
}
@@ -2119,6 +2265,9 @@ public int getSerializedSize() {
com.google.protobuf.CodedOutputStream.computeMessageSize(
10, kubernetesNamespaceAdmissionRules__);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ size += com.google.protobuf.GeneratedMessage.computeStringSize(11, etag_);
+ }
size += getUnknownFields().getSerializedSize();
memoizedSize = size;
return size;
@@ -2157,6 +2306,7 @@ public boolean equals(final java.lang.Object obj) {
if (hasUpdateTime()) {
if (!getUpdateTime().equals(other.getUpdateTime())) return false;
}
+ if (!getEtag().equals(other.getEtag())) return false;
if (!getUnknownFields().equals(other.getUnknownFields())) return false;
return true;
}
@@ -2202,6 +2352,8 @@ public int hashCode() {
hash = (37 * hash) + UPDATE_TIME_FIELD_NUMBER;
hash = (53 * hash) + getUpdateTime().hashCode();
}
+ hash = (37 * hash) + ETAG_FIELD_NUMBER;
+ hash = (53 * hash) + getEtag().hashCode();
hash = (29 * hash) + getUnknownFields().hashCode();
memoizedHashCode = hash;
return hash;
@@ -2309,7 +2461,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1.Policy] for container image binary authorization.
+ * A [policy][google.cloud.binaryauthorization.v1.Policy] for container image
+ * binary authorization.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.Policy}
@@ -2415,6 +2568,7 @@ public Builder clear() {
updateTimeBuilder_.dispose();
updateTimeBuilder_ = null;
}
+ etag_ = "";
return this;
}
@@ -2512,6 +2666,9 @@ private void buildPartial0(
updateTimeBuilder_ == null ? updateTime_ : updateTimeBuilder_.build();
to_bitField0_ |= 0x00000002;
}
+ if (((from_bitField0_ & 0x00000400) != 0)) {
+ result.etag_ = etag_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -2590,6 +2747,11 @@ public Builder mergeFrom(
if (other.hasUpdateTime()) {
mergeUpdateTime(other.getUpdateTime());
}
+ if (!other.getEtag().isEmpty()) {
+ etag_ = other.etag_;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ }
this.mergeUnknownFields(other.getUnknownFields());
onChanged();
return this;
@@ -2740,6 +2902,12 @@ public Builder mergeFrom(
bitField0_ |= 0x00000020;
break;
} // case 82
+ case 90:
+ {
+ etag_ = input.readStringRequireUtf8();
+ bitField0_ |= 0x00000400;
+ break;
+ } // case 90
default:
{
if (!super.parseUnknownField(input, extensionRegistry, tag)) {
@@ -3697,7 +3865,12 @@ public int getClusterAdmissionRulesCount() {
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3732,7 +3905,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3757,7 +3935,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3795,7 +3978,12 @@ public boolean containsClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3835,7 +4023,12 @@ public Builder clearClusterAdmissionRules() {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3870,7 +4063,12 @@ public Builder removeClusterAdmissionRules(java.lang.String key) {
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3901,7 +4099,12 @@ public Builder putClusterAdmissionRules(
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -3936,7 +4139,12 @@ public Builder putAllClusterAdmissionRules(
*
*
*
*
*
- * Optional. Per-cluster admission rules. Cluster spec format:
+ * Optional. A valid policy has only one of the following rule maps non-empty,
+ * i.e. only one of `cluster_admission_rules`,
+ * `kubernetes_namespace_admission_rules`,
+ * `kubernetes_service_account_admission_rules`,
+ * or `istio_service_identity_admission_rules` can be non-empty.
+ * Per-cluster admission rules. Cluster spec format:
* `location.clusterId`. There can be at most one admission rule per cluster
* spec.
* A `location` is either a compute zone (e.g. us-central1-a) or a region
@@ -4060,8 +4268,9 @@ public int getKubernetesNamespaceAdmissionRulesCount() {
*
*
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4090,8 +4299,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4110,8 +4320,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4143,8 +4354,9 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4178,8 +4390,9 @@ public Builder clearKubernetesNamespaceAdmissionRules() {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4208,8 +4421,9 @@ public Builder removeKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4234,8 +4448,9 @@ public Builder putKubernetesNamespaceAdmissionRules(
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4264,8 +4479,9 @@ public Builder putAllKubernetesNamespaceAdmissionRules(
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
- * [a-z.-]+, e.g. 'some-namespace'
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
+ * `[a-z.-]+`, e.g. `some-namespace`
*
*
*
@@ -4385,7 +4601,7 @@ public int getKubernetesServiceAccountAdmissionRulesCount() {
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4417,7 +4633,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4437,7 +4653,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4470,7 +4686,7 @@ public boolean containsKubernetesServiceAccountAdmissionRules(java.lang.String k
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4505,7 +4721,7 @@ public Builder clearKubernetesServiceAccountAdmissionRules() {
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4535,7 +4751,7 @@ public Builder removeKubernetesServiceAccountAdmissionRules(java.lang.String key
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4563,7 +4779,7 @@ public Builder putKubernetesServiceAccountAdmissionRules(
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4595,7 +4811,7 @@ public Builder putAllKubernetesServiceAccountAdmissionRules(
*
*
* Optional. Per-kubernetes-service-account admission rules. Service account
- * spec format: `namespace:serviceaccount`. e.g. 'test-ns:default'
+ * spec format: `namespace:serviceaccount`. e.g. `test-ns:default`
*
*
*
@@ -4717,9 +4933,9 @@ public int getIstioServiceIdentityAdmissionRulesCount() {
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4750,9 +4966,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4773,9 +4989,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4809,9 +5025,9 @@ public boolean containsIstioServiceIdentityAdmissionRules(java.lang.String key)
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4847,9 +5063,9 @@ public Builder clearIstioServiceIdentityAdmissionRules() {
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4880,9 +5096,9 @@ public Builder removeIstioServiceIdentityAdmissionRules(java.lang.String key) {
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4909,9 +5125,9 @@ public Builder putIstioServiceIdentityAdmissionRules(
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -4942,9 +5158,9 @@ public Builder putAllIstioServiceIdentityAdmissionRules(
*
* Optional. Per-istio-service-identity admission rules. Istio service
* identity spec format:
- * spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or
- * <domain>/ns/<namespace>/sa/<serviceaccount>
- * e.g. spiffe://example.com/ns/test-ns/sa/default
+ * `spiffe://<domain>/ns/<namespace>/sa/<serviceaccount>` or
+ * `<domain>/ns/<namespace>/sa/<serviceaccount>`
+ * e.g. `spiffe://example.com/ns/test-ns/sa/default`
*
*
*
@@ -5429,6 +5645,127 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTimeBuilder_;
}
+ private java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (!(ref instanceof java.lang.String)) {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ } else {
+ return (java.lang.String) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtag(java.lang.String value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ etag_ = value;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearEtag() {
+ etag_ = getDefaultInstance().getEtag();
+ bitField0_ = (bitField0_ & ~0x00000400);
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The bytes for etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtagBytes(com.google.protobuf.ByteString value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ checkByteStringIsUtf8(value);
+ etag_ = value;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1.Policy)
}
@@ -5527,8 +5864,10 @@ public interface AdmissionWhitelistPatternOrBuilder
*
*
*
- * An [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] exempts images
- * from checks by [admission rules][google.cloud.binaryauthorization.v1.AdmissionRule].
+ * An [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern]
+ * exempts images from checks by [admission
+ * rules][google.cloud.binaryauthorization.v1.AdmissionRule].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern}
@@ -5824,8 +6163,10 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] exempts images
- * from checks by [admission rules][google.cloud.binaryauthorization.v1.AdmissionRule].
+ * An [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern]
+ * exempts images from checks by [admission
+ * rules][google.cloud.binaryauthorization.v1.AdmissionRule].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern}
@@ -6227,8 +6568,8 @@ public interface AdmissionRuleOrBuilder
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6248,8 +6589,8 @@ public interface AdmissionRuleOrBuilder
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6269,8 +6610,8 @@ public interface AdmissionRuleOrBuilder
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6291,8 +6632,8 @@ public interface AdmissionRuleOrBuilder
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6339,13 +6680,15 @@ public interface AdmissionRuleOrBuilder
*
*
*
- * An [admission rule][google.cloud.binaryauthorization.v1.AdmissionRule] specifies either that all container images
- * used in a pod creation request must be attested to by one or more
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], that all pod creations will be allowed, or that all
- * pod creations will be denied.
+ * An [admission rule][google.cloud.binaryauthorization.v1.AdmissionRule]
+ * specifies either that all container images used in a pod creation request
+ * must be attested to by one or more
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], that all pod
+ * creations will be allowed, or that all pod creations will be denied.
*
- * Images matching an [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern]
- * are exempted from admission rules and will never block a pod creation.
+ * Images matching an [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] are
+ * exempted from admission rules and will never block a pod creation.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AdmissionRule}
@@ -6409,7 +6752,7 @@ public enum EvaluationMode implements com.google.protobuf.ProtocolMessageEnum {
*
*
*
- * This rule allows all all pod creations.
+ * This rule allows all pod creations.
*
*
* ALWAYS_ALLOW = 1;
@@ -6420,7 +6763,7 @@ public enum EvaluationMode implements com.google.protobuf.ProtocolMessageEnum {
*
*
* This rule allows a pod creation if all the attestors listed in
- * 'require_attestations_by' have valid attestations for all of the
+ * `require_attestations_by` have valid attestations for all of the
* images in the pod spec.
*
*
@@ -6465,7 +6808,7 @@ public enum EvaluationMode implements com.google.protobuf.ProtocolMessageEnum {
*
*
*
- * This rule allows all all pod creations.
+ * This rule allows all pod creations.
*
*
* ALWAYS_ALLOW = 1;
@@ -6477,7 +6820,7 @@ public enum EvaluationMode implements com.google.protobuf.ProtocolMessageEnum {
*
*
* This rule allows a pod creation if all the attestors listed in
- * 'require_attestations_by' have valid attestations for all of the
+ * `require_attestations_by` have valid attestations for all of the
* images in the pod spec.
*
*
@@ -6828,8 +7171,8 @@ public int getEvaluationModeValue() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6851,8 +7194,8 @@ public com.google.protobuf.ProtocolStringList getRequireAttestationsByList() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6874,8 +7217,8 @@ public int getRequireAttestationsByCount() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -6898,8 +7241,8 @@ public java.lang.String getRequireAttestationsBy(int index) {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
@@ -7172,13 +7515,15 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [admission rule][google.cloud.binaryauthorization.v1.AdmissionRule] specifies either that all container images
- * used in a pod creation request must be attested to by one or more
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], that all pod creations will be allowed, or that all
- * pod creations will be denied.
+ * An [admission rule][google.cloud.binaryauthorization.v1.AdmissionRule]
+ * specifies either that all container images used in a pod creation request
+ * must be attested to by one or more
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], that all pod
+ * creations will be allowed, or that all pod creations will be denied.
*
- * Images matching an [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern]
- * are exempted from admission rules and will never block a pod creation.
+ * Images matching an [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] are
+ * exempted from admission rules and will never block a pod creation.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AdmissionRule}
@@ -7506,8 +7851,8 @@ private void ensureRequireAttestationsByIsMutable() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7531,8 +7876,8 @@ public com.google.protobuf.ProtocolStringList getRequireAttestationsByList() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7555,8 +7900,8 @@ public int getRequireAttestationsByCount() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7580,8 +7925,8 @@ public java.lang.String getRequireAttestationsBy(int index) {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7605,8 +7950,8 @@ public com.google.protobuf.ByteString getRequireAttestationsByBytes(int index) {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7638,8 +7983,8 @@ public Builder setRequireAttestationsBy(int index, java.lang.String value) {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7670,8 +8015,8 @@ public Builder addRequireAttestationsBy(java.lang.String value) {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -7699,8 +8044,8 @@ public Builder addAllRequireAttestationsBy(java.lang.Iterable
@@ -7727,8 +8072,8 @@ public Builder clearRequireAttestationsBy() {
* to a policy the principal issuing the policy change request must be able
* to read the attestor resource.
*
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
+ * Note: this field must be non-empty when the `evaluation_mode` field
+ * specifies `REQUIRE_ATTESTATION`, otherwise it must be empty.
*
@@ -8072,6 +8417,36 @@ public interface AttestorOrBuilder
*/
com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder();
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ java.lang.String getEtag();
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ com.google.protobuf.ByteString getEtagBytes();
+
com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor.AttestorTypeCase
getAttestorTypeCase();
}
@@ -8080,9 +8455,9 @@ public interface AttestorOrBuilder
*
*
*
- * An [attestor][google.cloud.binaryauthorization.v1.Attestor] that attests to container image
- * artifacts. An existing attestor cannot be modified except where
- * indicated.
+ * An [attestor][google.cloud.binaryauthorization.v1.Attestor] that attests to
+ * container image artifacts. An existing attestor cannot be modified except
+ * where indicated.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.Attestor}
@@ -8111,6 +8486,7 @@ private Attestor(com.google.protobuf.GeneratedMessage.Builder> builder) {
private Attestor() {
name_ = "";
description_ = "";
+ etag_ = "";
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -8411,6 +8787,63 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTime_ == null ? com.google.protobuf.Timestamp.getDefaultInstance() : updateTime_;
}
+ public static final int ETAG_FIELD_NUMBER = 7;
+
+ @SuppressWarnings("serial")
+ private volatile java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ @java.lang.Override
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ return (java.lang.String) ref;
+ } else {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ @java.lang.Override
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -8440,6 +8873,9 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
if (!com.google.protobuf.GeneratedMessage.isStringEmpty(description_)) {
com.google.protobuf.GeneratedMessage.writeString(output, 6, description_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ com.google.protobuf.GeneratedMessage.writeString(output, 7, etag_);
+ }
getUnknownFields().writeTo(output);
}
@@ -8466,6 +8902,9 @@ public int getSerializedSize() {
if (!com.google.protobuf.GeneratedMessage.isStringEmpty(description_)) {
size += com.google.protobuf.GeneratedMessage.computeStringSize(6, description_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ size += com.google.protobuf.GeneratedMessage.computeStringSize(7, etag_);
+ }
size += getUnknownFields().getSerializedSize();
memoizedSize = size;
return size;
@@ -8489,6 +8928,7 @@ public boolean equals(final java.lang.Object obj) {
if (hasUpdateTime()) {
if (!getUpdateTime().equals(other.getUpdateTime())) return false;
}
+ if (!getEtag().equals(other.getEtag())) return false;
if (!getAttestorTypeCase().equals(other.getAttestorTypeCase())) return false;
switch (attestorTypeCase_) {
case 3:
@@ -8516,6 +8956,8 @@ public int hashCode() {
hash = (37 * hash) + UPDATE_TIME_FIELD_NUMBER;
hash = (53 * hash) + getUpdateTime().hashCode();
}
+ hash = (37 * hash) + ETAG_FIELD_NUMBER;
+ hash = (53 * hash) + getEtag().hashCode();
switch (attestorTypeCase_) {
case 3:
hash = (37 * hash) + USER_OWNED_GRAFEAS_NOTE_FIELD_NUMBER;
@@ -8636,9 +9078,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [attestor][google.cloud.binaryauthorization.v1.Attestor] that attests to container image
- * artifacts. An existing attestor cannot be modified except where
- * indicated.
+ * An [attestor][google.cloud.binaryauthorization.v1.Attestor] that attests to
+ * container image artifacts. An existing attestor cannot be modified except
+ * where indicated.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.Attestor}
@@ -8694,6 +9136,7 @@ public Builder clear() {
updateTimeBuilder_.dispose();
updateTimeBuilder_ = null;
}
+ etag_ = "";
attestorTypeCase_ = 0;
attestorType_ = null;
return this;
@@ -8750,6 +9193,9 @@ private void buildPartial0(
updateTimeBuilder_ == null ? updateTime_ : updateTimeBuilder_.build();
to_bitField0_ |= 0x00000001;
}
+ if (((from_bitField0_ & 0x00000010) != 0)) {
+ result.etag_ = etag_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -8792,6 +9238,11 @@ public Builder mergeFrom(
if (other.hasUpdateTime()) {
mergeUpdateTime(other.getUpdateTime());
}
+ if (!other.getEtag().isEmpty()) {
+ etag_ = other.etag_;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ }
switch (other.getAttestorTypeCase()) {
case USER_OWNED_GRAFEAS_NOTE:
{
@@ -8856,6 +9307,12 @@ public Builder mergeFrom(
bitField0_ |= 0x00000002;
break;
} // case 50
+ case 58:
+ {
+ etag_ = input.readStringRequireUtf8();
+ bitField0_ |= 0x00000010;
+ break;
+ } // case 58
default:
{
if (!super.parseUnknownField(input, extensionRegistry, tag)) {
@@ -9612,22 +10069,143 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTimeBuilder_;
}
- // @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1.Attestor)
- }
+ private java.lang.Object etag_ = "";
- // @@protoc_insertion_point(class_scope:google.cloud.binaryauthorization.v1.Attestor)
- private static final com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
- DEFAULT_INSTANCE;
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (!(ref instanceof java.lang.String)) {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ } else {
+ return (java.lang.String) ref;
+ }
+ }
- static {
- DEFAULT_INSTANCE =
- new com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor();
- }
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
- public static com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
- getDefaultInstance() {
- return DEFAULT_INSTANCE;
- }
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtag(java.lang.String value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ etag_ = value;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearEtag() {
+ etag_ = getDefaultInstance().getEtag();
+ bitField0_ = (bitField0_ & ~0x00000010);
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The bytes for etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtagBytes(com.google.protobuf.ByteString value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ checkByteStringIsUtf8(value);
+ etag_ = value;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ return this;
+ }
+
+ // @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1.Attestor)
+ }
+
+ // @@protoc_insertion_point(class_scope:google.cloud.binaryauthorization.v1.Attestor)
+ private static final com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
+ DEFAULT_INSTANCE;
+
+ static {
+ DEFAULT_INSTANCE =
+ new com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor();
+ }
+
+ public static com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
+ getDefaultInstance() {
+ return DEFAULT_INSTANCE;
+ }
private static final com.google.protobuf.Parser
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -9697,8 +10275,8 @@ public interface UserOwnedGrafeasNoteOrBuilder
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -9829,12 +10407,13 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.AttestorPublicKe
*
*
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -9852,12 +10431,13 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.AttestorPublicKe
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -9875,8 +10455,9 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.AttestorPublicKe
*
*
*
- * An [user owned Grafeas note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a Grafeas
- * Attestation.Authority Note created by the user.
+ * An [user owned Grafeas
+ * note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a
+ * Grafeas Attestation.Authority Note created by the user.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote}
@@ -9935,8 +10516,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -9965,8 +10546,8 @@ public java.lang.String getNoteReference() {
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -10136,12 +10717,13 @@ public int getPublicKeysCount() {
*
*
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -10170,12 +10752,13 @@ public java.lang.String getDelegationServiceAccountEmail() {
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -10409,8 +10992,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [user owned Grafeas note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a Grafeas
- * Attestation.Authority Note created by the user.
+ * An [user owned Grafeas
+ * note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a
+ * Grafeas Attestation.Authority Note created by the user.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote}
@@ -10663,8 +11247,8 @@ public Builder mergeFrom(
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -10692,8 +11276,8 @@ public java.lang.String getNoteReference() {
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -10721,8 +11305,8 @@ public com.google.protobuf.ByteString getNoteReferenceBytes() {
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -10749,8 +11333,8 @@ public Builder setNoteReference(java.lang.String value) {
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -10773,8 +11357,8 @@ public Builder clearNoteReference() {
*
*
*
*
* Required. The Grafeas resource name of a Attestation.Authority Note,
- * created by the user, in the format: `projects/*/notes/*`. This field may
- * not be updated.
+ * created by the user, in the format: `projects/[PROJECT_ID]/notes/*`. This
+ * field may not be updated. A project ID must be used, not a project number.
*
* An attestation by this attestor is stored as a Grafeas
* Attestation.Authority Occurrence that names a container image and that
@@ -11396,12 +11980,13 @@ public Builder removePublicKeys(int index) {
*
*
*
* Protobuf enum {@code google.cloud.binaryauthorization.v1.PkixPublicKey.SignatureAlgorithm}
@@ -11780,7 +12422,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -11429,12 +12014,13 @@ public java.lang.String getDelegationServiceAccountEmail() {
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -11462,12 +12048,13 @@ public com.google.protobuf.ByteString getDelegationServiceAccountEmailBytes() {
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -11494,12 +12081,13 @@ public Builder setDelegationServiceAccountEmail(java.lang.String value) {
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -11522,12 +12110,13 @@ public Builder clearDelegationServiceAccountEmail() {
*
*
* Output only. This field will contain the service account email address
- * that this Attestor will use as the principal when querying Container
+ * that this attestor will use as the principal when querying Container
* Analysis. Attestor administrators must grant this service account the
- * IAM role needed to read attestations from the [note_reference][Note] in
- * Container Analysis (`containeranalysis.notes.occurrences.viewer`).
+ * IAM role needed to read attestations from the
+ * [note_reference][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote.note_reference]
+ * in Container Analysis (`containeranalysis.notes.occurrences.viewer`).
*
- * This email address is fixed for the lifetime of the Attestor, but callers
+ * This email address is fixed for the lifetime of the attestor, but callers
* should not make any other assumptions about the service account email;
* future versions may use an email based on a different naming pattern.
*
@@ -11680,16 +12269,67 @@ public interface PkixPublicKeyOrBuilder
*/
com.google.protos.google.cloud.binaryauthorization.v1.Resources.PkixPublicKey.SignatureAlgorithm
getSignatureAlgorithm();
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The keyId.
+ */
+ java.lang.String getKeyId();
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for keyId.
+ */
+ com.google.protobuf.ByteString getKeyIdBytes();
}
/**
*
*
*
- * A public key in the PkixPublicKey format (see
- * https://tools.ietf.org/html/rfc5280#section-4.1.2.7 for details).
- * Public keys of this type are typically textually encoded using the PEM
- * format.
+ * A public key in the PkixPublicKey
+ * [format](https://tools.ietf.org/html/rfc5280#section-4.1.2.7). Public keys of
+ * this type are typically textually encoded using the PEM format.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.PkixPublicKey}
@@ -11718,6 +12358,7 @@ private PkixPublicKey(com.google.protobuf.GeneratedMessage.Builder> builder) {
private PkixPublicKey() {
publicKeyPem_ = "";
signatureAlgorithm_ = 0;
+ keyId_ = "";
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -11743,9 +12384,10 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
* Represents a signature algorithm and other information necessary to verify
* signatures with a given public key.
* This is based primarily on the public key types supported by Tink's
- * PemKeyType, which is in turn based on KMS's supported signing algorithms.
- * See https://cloud.google.com/kms/docs/algorithms. In the future, BinAuthz
- * might support additional public key types independently of Tink and/or KMS.
+ * PemKeyType, which is in turn based on KMS's supported signing
+ * [algorithms](https://cloud.google.com/kms/docs/algorithms). In the future,
+ * Binary Authorization might support additional public key types
+ * independently of Tink and/or KMS.
* RSA_PSS_3072_SHA256 = 2;
*/
- RSA_PSS_3072_SHA256(2, 2),
+ RSA_PSS_3072_SHA256(3, 2),
/**
*
*
@@ -11790,7 +12432,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_PSS_4096_SHA256 = 3;
*/
- RSA_PSS_4096_SHA256(3, 3),
+ RSA_PSS_4096_SHA256(5, 3),
/**
*
*
@@ -11800,7 +12442,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_PSS_4096_SHA512 = 4;
*/
- RSA_PSS_4096_SHA512(4, 4),
+ RSA_PSS_4096_SHA512(7, 4),
/**
*
*
@@ -11810,7 +12452,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_2048_SHA256 = 5;
*/
- RSA_SIGN_PKCS1_2048_SHA256(5, 5),
+ RSA_SIGN_PKCS1_2048_SHA256(9, 5),
/**
*
*
@@ -11820,7 +12462,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_3072_SHA256 = 6;
*/
- RSA_SIGN_PKCS1_3072_SHA256(6, 6),
+ RSA_SIGN_PKCS1_3072_SHA256(10, 6),
/**
*
*
@@ -11830,7 +12472,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_4096_SHA256 = 7;
*/
- RSA_SIGN_PKCS1_4096_SHA256(7, 7),
+ RSA_SIGN_PKCS1_4096_SHA256(11, 7),
/**
*
*
@@ -11840,7 +12482,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_4096_SHA512 = 8;
*/
- RSA_SIGN_PKCS1_4096_SHA512(8, 8),
+ RSA_SIGN_PKCS1_4096_SHA512(12, 8),
/**
*
*
@@ -11850,7 +12492,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P256_SHA256 = 9;
*/
- ECDSA_P256_SHA256(9, 9),
+ ECDSA_P256_SHA256(13, 9),
/**
*
*
@@ -11860,7 +12502,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P384_SHA384 = 10;
*/
- ECDSA_P384_SHA384(11, 10),
+ ECDSA_P384_SHA384(15, 10),
/**
*
*
@@ -11870,7 +12512,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P521_SHA512 = 11;
*/
- ECDSA_P521_SHA512(13, 11),
+ ECDSA_P521_SHA512(17, 11),
+ /**
+ *
+ *
+ *
+ * ML-DSA-65 Post-Quantum Cryptography signature algorithm.
+ *
+ *
+ * ML_DSA_65 = 13;
+ */
+ ML_DSA_65(19, 13),
UNRECOGNIZED(-1, -1),
;
@@ -11884,6 +12536,50 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
"SignatureAlgorithm");
}
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 2048 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_2048_SHA256 = 1;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_2048_SHA256 = RSA_PSS_2048_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 3072 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_3072_SHA256 = 2;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_3072_SHA256 = RSA_PSS_3072_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA256 = 3;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_4096_SHA256 = RSA_PSS_4096_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA512 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA512 = 4;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_4096_SHA512 = RSA_PSS_4096_SHA512;
+
/**
*
*
@@ -11939,6 +12635,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_2048_SHA256_VALUE = 1;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 2048 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_2048_SHA256 = 1;
+ */
+ public static final int RSA_SIGN_PSS_2048_SHA256_VALUE = 1;
+
/**
*
*
@@ -11950,6 +12657,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_3072_SHA256_VALUE = 2;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 3072 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_3072_SHA256 = 2;
+ */
+ public static final int RSA_SIGN_PSS_3072_SHA256_VALUE = 2;
+
/**
*
*
@@ -11961,6 +12679,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_4096_SHA256_VALUE = 3;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA256 = 3;
+ */
+ public static final int RSA_SIGN_PSS_4096_SHA256_VALUE = 3;
+
/**
*
*
@@ -11972,6 +12701,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_4096_SHA512_VALUE = 4;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA512 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA512 = 4;
+ */
+ public static final int RSA_SIGN_PSS_4096_SHA512_VALUE = 4;
+
/**
*
*
@@ -12082,6 +12822,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int EC_SIGN_P521_SHA512_VALUE = 11;
+ /**
+ *
+ *
+ *
+ * ML-DSA-65 Post-Quantum Cryptography signature algorithm.
+ *
+ *
+ * ML_DSA_65 = 13;
+ */
+ public static final int ML_DSA_65_VALUE = 13;
+
public final int getNumber() {
if (index == -1) {
throw new java.lang.IllegalArgumentException(
@@ -12130,6 +12881,8 @@ public static SignatureAlgorithm forNumber(int value) {
return ECDSA_P384_SHA384;
case 11:
return ECDSA_P521_SHA512;
+ case 13:
+ return ML_DSA_65;
default:
return null;
}
@@ -12173,9 +12926,13 @@ private static SignatureAlgorithm[] getStaticValuesArray() {
return new SignatureAlgorithm[] {
SIGNATURE_ALGORITHM_UNSPECIFIED,
RSA_PSS_2048_SHA256,
+ RSA_SIGN_PSS_2048_SHA256,
RSA_PSS_3072_SHA256,
+ RSA_SIGN_PSS_3072_SHA256,
RSA_PSS_4096_SHA256,
+ RSA_SIGN_PSS_4096_SHA256,
RSA_PSS_4096_SHA512,
+ RSA_SIGN_PSS_4096_SHA512,
RSA_SIGN_PKCS1_2048_SHA256,
RSA_SIGN_PKCS1_3072_SHA256,
RSA_SIGN_PKCS1_4096_SHA256,
@@ -12186,6 +12943,7 @@ private static SignatureAlgorithm[] getStaticValuesArray() {
EC_SIGN_P384_SHA384,
ECDSA_P521_SHA512,
EC_SIGN_P521_SHA512,
+ ML_DSA_65,
};
}
@@ -12323,6 +13081,85 @@ public int getSignatureAlgorithmValue() {
: result;
}
+ public static final int KEY_ID_FIELD_NUMBER = 3;
+
+ @SuppressWarnings("serial")
+ private volatile java.lang.Object keyId_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The keyId.
+ */
+ @java.lang.Override
+ public java.lang.String getKeyId() {
+ java.lang.Object ref = keyId_;
+ if (ref instanceof java.lang.String) {
+ return (java.lang.String) ref;
+ } else {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ keyId_ = s;
+ return s;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for keyId.
+ */
+ @java.lang.Override
+ public com.google.protobuf.ByteString getKeyIdBytes() {
+ java.lang.Object ref = keyId_;
+ if (ref instanceof java.lang.String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ keyId_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -12346,6 +13183,9 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
.getNumber()) {
output.writeEnum(2, signatureAlgorithm_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(keyId_)) {
+ com.google.protobuf.GeneratedMessage.writeString(output, 3, keyId_);
+ }
getUnknownFields().writeTo(output);
}
@@ -12364,6 +13204,9 @@ public int getSerializedSize() {
.getNumber()) {
size += com.google.protobuf.CodedOutputStream.computeEnumSize(2, signatureAlgorithm_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(keyId_)) {
+ size += com.google.protobuf.GeneratedMessage.computeStringSize(3, keyId_);
+ }
size += getUnknownFields().getSerializedSize();
memoizedSize = size;
return size;
@@ -12384,6 +13227,7 @@ public boolean equals(final java.lang.Object obj) {
if (!getPublicKeyPem().equals(other.getPublicKeyPem())) return false;
if (signatureAlgorithm_ != other.signatureAlgorithm_) return false;
+ if (!getKeyId().equals(other.getKeyId())) return false;
if (!getUnknownFields().equals(other.getUnknownFields())) return false;
return true;
}
@@ -12399,6 +13243,8 @@ public int hashCode() {
hash = (53 * hash) + getPublicKeyPem().hashCode();
hash = (37 * hash) + SIGNATURE_ALGORITHM_FIELD_NUMBER;
hash = (53 * hash) + signatureAlgorithm_;
+ hash = (37 * hash) + KEY_ID_FIELD_NUMBER;
+ hash = (53 * hash) + getKeyId().hashCode();
hash = (29 * hash) + getUnknownFields().hashCode();
memoizedHashCode = hash;
return hash;
@@ -12511,10 +13357,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * A public key in the PkixPublicKey format (see
- * https://tools.ietf.org/html/rfc5280#section-4.1.2.7 for details).
- * Public keys of this type are typically textually encoded using the PEM
- * format.
+ * A public key in the PkixPublicKey
+ * [format](https://tools.ietf.org/html/rfc5280#section-4.1.2.7). Public keys of
+ * this type are typically textually encoded using the PEM format.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.PkixPublicKey}
@@ -12553,6 +13398,7 @@ public Builder clear() {
bitField0_ = 0;
publicKeyPem_ = "";
signatureAlgorithm_ = 0;
+ keyId_ = "";
return this;
}
@@ -12600,6 +13446,9 @@ private void buildPartial0(
if (((from_bitField0_ & 0x00000002) != 0)) {
result.signatureAlgorithm_ = signatureAlgorithm_;
}
+ if (((from_bitField0_ & 0x00000004) != 0)) {
+ result.keyId_ = keyId_;
+ }
}
@java.lang.Override
@@ -12629,6 +13478,11 @@ public Builder mergeFrom(
if (other.signatureAlgorithm_ != 0) {
setSignatureAlgorithmValue(other.getSignatureAlgorithmValue());
}
+ if (!other.getKeyId().isEmpty()) {
+ keyId_ = other.keyId_;
+ bitField0_ |= 0x00000004;
+ onChanged();
+ }
this.mergeUnknownFields(other.getUnknownFields());
onChanged();
return this;
@@ -12667,6 +13521,12 @@ public Builder mergeFrom(
bitField0_ |= 0x00000002;
break;
} // case 16
+ case 26:
+ {
+ keyId_ = input.readStringRequireUtf8();
+ bitField0_ |= 0x00000004;
+ break;
+ } // case 26
default:
{
if (!super.parseUnknownField(input, extensionRegistry, tag)) {
@@ -12938,6 +13798,182 @@ public Builder clearSignatureAlgorithm() {
return this;
}
+ private java.lang.Object keyId_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The keyId.
+ */
+ public java.lang.String getKeyId() {
+ java.lang.Object ref = keyId_;
+ if (!(ref instanceof java.lang.String)) {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ keyId_ = s;
+ return s;
+ } else {
+ return (java.lang.String) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for keyId.
+ */
+ public com.google.protobuf.ByteString getKeyIdBytes() {
+ java.lang.Object ref = keyId_;
+ if (ref instanceof String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ keyId_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The keyId to set.
+ * @return This builder for chaining.
+ */
+ public Builder setKeyId(java.lang.String value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ keyId_ = value;
+ bitField0_ |= 0x00000004;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearKeyId() {
+ keyId_ = getDefaultInstance().getKeyId();
+ bitField0_ = (bitField0_ & ~0x00000004);
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. The ID of this public key.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them. The ID must match exactly
+ * contents of the `key_id` field exactly.
+ *
+ * The ID may be explicitly provided by the caller, but it MUST be a valid
+ * RFC3986 URI. If `key_id` is left blank and this `PkixPublicKey` is not used
+ * in the context of a wrapper (see next paragraph), a default key ID will be
+ * computed based on the digest of the DER encoding of the public key.
+ *
+ * If this `PkixPublicKey` is used in the context of a wrapper that has its
+ * own notion of key ID (e.g. `AttestorPublicKey`), then this field can
+ * either match that value exactly, or be left blank, in which case it behaves
+ * exactly as though it is equal to that wrapper value.
+ *
+ *
+ * string key_id = 3 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The bytes for keyId to set.
+ * @return This builder for chaining.
+ */
+ public Builder setKeyIdBytes(com.google.protobuf.ByteString value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ checkByteStringIsUtf8(value);
+ keyId_ = value;
+ bitField0_ |= 0x00000004;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1.PkixPublicKey)
}
@@ -13031,12 +14067,11 @@ public interface AttestorPublicKeyOrBuilder
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -13050,12 +14085,11 @@ public interface AttestorPublicKeyOrBuilder
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -13071,11 +14105,11 @@ public interface AttestorPublicKeyOrBuilder
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13091,11 +14125,11 @@ public interface AttestorPublicKeyOrBuilder
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13111,11 +14145,11 @@ public interface AttestorPublicKeyOrBuilder
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13186,8 +14220,9 @@ public interface AttestorPublicKeyOrBuilder
*
*
*
- * An [attestor public key][google.cloud.binaryauthorization.v1.AttestorPublicKey] that will be used to verify
- * attestations signed by this attestor.
+ * An [attestor public
+ * key][google.cloud.binaryauthorization.v1.AttestorPublicKey] that will be used
+ * to verify attestations signed by this attestor.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AttestorPublicKey}
@@ -13348,12 +14383,11 @@ public com.google.protobuf.ByteString getCommentBytes() {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -13378,12 +14412,11 @@ public java.lang.String getId() {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -13412,11 +14445,11 @@ public com.google.protobuf.ByteString getIdBytes() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13434,11 +14467,11 @@ public boolean hasAsciiArmoredPgpPublicKey() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13469,11 +14502,11 @@ public java.lang.String getAsciiArmoredPgpPublicKey() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -13798,8 +14831,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [attestor public key][google.cloud.binaryauthorization.v1.AttestorPublicKey] that will be used to verify
- * attestations signed by this attestor.
+ * An [attestor public
+ * key][google.cloud.binaryauthorization.v1.AttestorPublicKey] that will be used
+ * to verify attestations signed by this attestor.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.AttestorPublicKey}
@@ -14157,12 +15191,11 @@ public Builder setCommentBytes(com.google.protobuf.ByteString value) {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -14186,12 +15219,11 @@ public java.lang.String getId() {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -14215,12 +15247,11 @@ public com.google.protobuf.ByteString getIdBytes() {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -14243,12 +15274,11 @@ public Builder setId(java.lang.String value) {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -14267,12 +15297,11 @@ public Builder clearId() {
*
*
* The ID of this public key.
- * Signatures verified by BinAuthz must include the ID of the public key that
- * can be used to verify them, and that ID must match the contents of this
- * field exactly.
- * Additional restrictions on this field can be imposed based on which public
- * key type is encapsulated. See the documentation on `public_key` cases below
- * for details.
+ * Signatures verified by Binary Authorization must include the ID of the
+ * public key that can be used to verify them, and that ID must match the
+ * contents of this field exactly. Additional restrictions on this field can
+ * be imposed based on which public key type is encapsulated. See the
+ * documentation on `public_key` cases below for details.
*
*
* string id = 2;
@@ -14298,11 +15327,11 @@ public Builder setIdBytes(com.google.protobuf.ByteString value) {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -14321,11 +15350,11 @@ public boolean hasAsciiArmoredPgpPublicKey() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
* string ascii_armored_pgp_public_key = 3;
@@ -14357,11 +15386,11 @@ public java.lang.String getAsciiArmoredPgpPublicKey() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
*
*
* string ascii_armored_pgp_public_key = 3;
@@ -14393,11 +15422,11 @@ public com.google.protobuf.ByteString getAsciiArmoredPgpPublicKeyBytes() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
*
*
* string ascii_armored_pgp_public_key = 3;
@@ -14422,11 +15451,11 @@ public Builder setAsciiArmoredPgpPublicKey(java.lang.String value) {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
*
*
* string ascii_armored_pgp_public_key = 3;
@@ -14449,11 +15478,11 @@ public Builder clearAsciiArmoredPgpPublicKey() {
* ASCII-armored representation of a PGP public key, as the entire output by
* the command `gpg --export --armor foo@example.com` (either LF or CRLF
* line endings).
- * When using this field, `id` should be left blank. The BinAuthz API
- * handlers will calculate the ID and fill it in automatically. BinAuthz
- * computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as
- * upper-case hex. If `id` is provided by the caller, it will be
- * overwritten by the API-calculated ID.
+ * When using this field, `id` should be left blank. The Binary
+ * Authorization API handlers will calculate the ID and fill it in
+ * automatically. Binary Authorization computes this ID as the OpenPGP
+ * RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is
+ * provided by the caller, it will be overwritten by the API-calculated ID.
*
*
* string ascii_armored_pgp_public_key = 3;
@@ -14871,7 +15900,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
"\n"
+ "3google/cloud/binaryauthorization/v1/resources.proto\022#google.cloud.binaryauthor"
+ "ization.v1\032\037google/api/field_behavior.pr"
- + "oto\032\031google/api/resource.proto\032\037google/protobuf/timestamp.proto\"\370\014\n"
+ + "oto\032\031google/api/resource.proto\032\037google/protobuf/timestamp.proto\"\213\r\n"
+ "\006Policy\022\021\n"
+ "\004name\030\001 \001(\tB\003\340A\003\022\030\n"
+ "\013description\030\006 \001(\tB\003\340A\001\022r\n"
@@ -14891,37 +15920,39 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "binaryauthorization.v1.Policy.IstioServiceIdentityAdmissionRulesEntryB\003\340A\001\022W\n"
+ "\026default_admission_rule\030\004 \001(\01322.google.clou"
+ "d.binaryauthorization.v1.AdmissionRuleB\003\340A\002\0224\n"
- + "\013update_time\030\005 \001(\0132\032.google.protobuf.TimestampB\003\340A\003\032p\n"
+ + "\013update_time\030\005"
+ + " \001(\0132\032.google.protobuf.TimestampB\003\340A\003\022\021\n"
+ + "\004etag\030\013 \001(\tB\003\340A\001\032p\n"
+ "\032ClusterAdmissionRulesEntry\022\013\n"
+ "\003key\030\001 \001(\t\022A\n"
- + "\005value\030\002 \001(\01322.go"
- + "ogle.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032|\n"
+ + "\005value\030\002"
+ + " \001(\01322.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032|\n"
+ "&KubernetesNamespaceAdmissionRulesEntry\022\013\n"
+ "\003key\030\001 \001(\t\022A\n"
- + "\005value\030\002 \001("
- + "\01322.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032\201\001\n"
+ + "\005value\030\002"
+ + " \001(\01322.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032\201\001\n"
+ "+KubernetesServiceAccountAdmissionRulesEntry\022\013\n"
+ "\003key\030\001 \001(\t\022A\n"
- + "\005value\030\002"
- + " \001(\01322.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032}\n"
+ + "\005value\030\002 \001(\01322.googl"
+ + "e.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\032}\n"
+ "\'IstioServiceIdentityAdmissionRulesEntry\022\013\n"
+ "\003key\030\001 \001(\t\022A\n"
- + "\005value\030\002"
- + " \001(\01322.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\"d\n"
+ + "\005value\030\002 \001(\0132"
+ + "2.google.cloud.binaryauthorization.v1.AdmissionRule:\0028\001\"d\n"
+ "\032GlobalPolicyEvaluationMode\022-\n"
+ ")GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED\020\000\022\n\n"
+ "\006ENABLE\020\001\022\013\n"
+ "\007DISABLE\020\002:f\352Ac\n"
- + ")binaryauthorization.googleapis.com/Policy\022\031projects/{pr"
- + "oject}/policy\022\033locations/{location}/policy\"1\n"
+ + ")binaryauthorization.googleapis.com/P"
+ + "olicy\022\031projects/{project}/policy\022\033locations/{location}/policy\"1\n"
+ "\031AdmissionWhitelistPattern\022\024\n"
+ "\014name_pattern\030\001 \001(\t\"\332\003\n\r"
+ "AdmissionRule\022_\n"
- + "\017evaluation_mode\030\001 \001(\0162A.google.cloud.binaryau"
- + "thorization.v1.AdmissionRule.EvaluationModeB\003\340A\002\022$\n"
+ + "\017evaluation_mode\030\001 \001(\0162A.go"
+ + "ogle.cloud.binaryauthorization.v1.AdmissionRule.EvaluationModeB\003\340A\002\022$\n"
+ "\027require_attestations_by\030\002 \003(\tB\003\340A\001\022a\n"
- + "\020enforcement_mode\030\003 \001(\0162B.googl"
- + "e.cloud.binaryauthorization.v1.AdmissionRule.EnforcementModeB\003\340A\002\"m\n"
+ + "\020enforcement_mode\030\003 \001(\0162B.google.cloud.binaryauthori"
+ + "zation.v1.AdmissionRule.EnforcementModeB\003\340A\002\"m\n"
+ "\016EvaluationMode\022\037\n"
+ "\033EVALUATION_MODE_UNSPECIFIED\020\000\022\020\n"
+ "\014ALWAYS_ALLOW\020\001\022\027\n"
@@ -14930,32 +15961,38 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\017EnforcementMode\022 \n"
+ "\034ENFORCEMENT_MODE_UNSPECIFIED\020\000\022 \n"
+ "\034ENFORCED_BLOCK_AND_AUDIT_LOG\020\001\022\031\n"
- + "\025DRYRUN_AUDIT_LOG_ONLY\020\002\"\267\002\n"
+ + "\025DRYRUN_AUDIT_LOG_ONLY\020\002\"\312\002\n"
+ "\010Attestor\022\021\n"
+ "\004name\030\001 \001(\tB\003\340A\002\022\030\n"
+ "\013description\030\006 \001(\tB\003\340A\001\022\\\n"
- + "\027user_owned_grafeas_note\030\003 \001(\01329.google.cloud.bin"
- + "aryauthorization.v1.UserOwnedGrafeasNoteH\000\0224\n"
+ + "\027user_owned_grafeas_note\030\003 \001(\013"
+ + "29.google.cloud.binaryauthorization.v1.UserOwnedGrafeasNoteH\000\0224\n"
+ "\013update_time\030\004"
- + " \001(\0132\032.google.protobuf.TimestampB\003\340A\003:Y\352AV\n"
- + "+binaryauthorizati"
- + "on.googleapis.com/Attestor\022\'projects/{project}/attestors/{attestor}B\017\n\r"
+ + " \001(\0132\032.google.protobuf.TimestampB\003\340A\003\022\021\n"
+ + "\004etag\030\007 \001(\tB\003\340A\001:Y\352AV\n"
+ + "+binaryauthorization"
+ + ".googleapis.com/Attestor\022\'projects/{project}/attestors/{attestor}B\017\n\r"
+ "attestor_type\"\264\001\n"
+ "\024UserOwnedGrafeasNote\022\033\n"
+ "\016note_reference\030\001 \001(\tB\003\340A\002\022P\n"
- + "\013public_keys\030\002 \003(\0132"
- + "6.google.cloud.binaryauthorization.v1.AttestorPublicKeyB\003\340A\001\022-\n"
- + " delegation_service_account_email\030\003 \001(\tB\003\340A\003\"\277\004\n\r"
+ + "\013public_keys\030\002 \003(\01326."
+ + "google.cloud.binaryauthorization.v1.AttestorPublicKeyB\003\340A\001\022-\n"
+ + " delegation_service_account_email\030\003 \001(\tB\003\340A\003\"\333\005\n\r"
+ "PkixPublicKey\022\026\n"
+ "\016public_key_pem\030\001 \001(\t\022b\n"
- + "\023signature_algorithm\030\002 \001(\0162E.google.cloud.binary"
- + "authorization.v1.PkixPublicKey.SignatureAlgorithm\"\261\003\n"
+ + "\023signature_algorithm\030\002 \001(\0162E.google.cloud.binaryau"
+ + "thorization.v1.PkixPublicKey.SignatureAlgorithm\022\023\n"
+ + "\006key_id\030\003 \001(\tB\003\340A\001\"\270\004\n"
+ "\022SignatureAlgorithm\022#\n"
+ "\037SIGNATURE_ALGORITHM_UNSPECIFIED\020\000\022\027\n"
- + "\023RSA_PSS_2048_SHA256\020\001\022\027\n"
- + "\023RSA_PSS_3072_SHA256\020\002\022\027\n"
- + "\023RSA_PSS_4096_SHA256\020\003\022\027\n"
- + "\023RSA_PSS_4096_SHA512\020\004\022\036\n"
+ + "\023RSA_PSS_2048_SHA256\020\001\022\034\n"
+ + "\030RSA_SIGN_PSS_2048_SHA256\020\001\022\027\n"
+ + "\023RSA_PSS_3072_SHA256\020\002\022\034\n"
+ + "\030RSA_SIGN_PSS_3072_SHA256\020\002\022\027\n"
+ + "\023RSA_PSS_4096_SHA256\020\003\022\034\n"
+ + "\030RSA_SIGN_PSS_4096_SHA256\020\003\022\027\n"
+ + "\023RSA_PSS_4096_SHA512\020\004\022\034\n"
+ + "\030RSA_SIGN_PSS_4096_SHA512\020\004\022\036\n"
+ "\032RSA_SIGN_PKCS1_2048_SHA256\020\005\022\036\n"
+ "\032RSA_SIGN_PKCS1_3072_SHA256\020\006\022\036\n"
+ "\032RSA_SIGN_PKCS1_4096_SHA256\020\007\022\036\n"
@@ -14967,19 +16004,21 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\023EC_SIGN_P384_SHA384\020\n"
+ "\022\025\n"
+ "\021ECDSA_P521_SHA512\020\013\022\027\n"
- + "\023EC_SIGN_P521_SHA512\020\013\032\002\020\001\"\272\001\n"
+ + "\023EC_SIGN_P521_SHA512\020\013\022\r\n"
+ + "\tML_DSA_65\020\r"
+ + "\032\002\020\001\"\272\001\n"
+ "\021AttestorPublicKey\022\024\n"
+ "\007comment\030\001 \001(\tB\003\340A\001\022\n\n"
+ "\002id\030\002 \001(\t\022&\n"
+ "\034ascii_armored_pgp_public_key\030\003 \001(\tH\000\022M\n"
- + "\017pkix_public_key\030\005"
- + " \001(\01322.google.cloud.binaryauthorization.v1.PkixPublicKeyH\000B\014\n\n"
- + "public_keyB\214\002\n"
- + "5com.google.protos.google.cloud.binaryauthorization.v1P\000ZYcloud.google.com/go/bina"
- + "ryauthorization/apiv1/binaryauthorizatio"
- + "npb;binaryauthorizationpb\370\001\001\252\002#Google.Cl"
- + "oud.BinaryAuthorization.V1\312\002#Google\\Clou"
- + "d\\BinaryAuthorization\\V1\352\002&Google::Cloud::BinaryAuthorization::V1b\006proto3"
+ + "\017pkix_public_key\030\005 \001(\013"
+ + "22.google.cloud.binaryauthorization.v1.PkixPublicKeyH\000B\014\n\n"
+ + "public_keyB\211\002\n"
+ + "5com.google.protos.google.cloud.binaryauthorizat"
+ + "ion.v1P\000ZYcloud.google.com/go/binaryauthorization/apiv1/binaryauthorizationpb;bi"
+ + "naryauthorizationpb\252\002#Google.Cloud.Binar"
+ + "yAuthorization.V1\312\002#Google\\Cloud\\BinaryA"
+ + "uthorization\\V1\352\002&Google::Cloud::BinaryAuthorization::V1b\006proto3"
};
descriptor =
com.google.protobuf.Descriptors.FileDescriptor.internalBuildGeneratedFileFrom(
@@ -15005,6 +16044,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
"IstioServiceIdentityAdmissionRules",
"DefaultAdmissionRule",
"UpdateTime",
+ "Etag",
});
internal_static_google_cloud_binaryauthorization_v1_Policy_ClusterAdmissionRulesEntry_descriptor =
internal_static_google_cloud_binaryauthorization_v1_Policy_descriptor.getNestedType(0);
@@ -15060,7 +16100,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
new com.google.protobuf.GeneratedMessage.FieldAccessorTable(
internal_static_google_cloud_binaryauthorization_v1_Attestor_descriptor,
new java.lang.String[] {
- "Name", "Description", "UserOwnedGrafeasNote", "UpdateTime", "AttestorType",
+ "Name", "Description", "UserOwnedGrafeasNote", "UpdateTime", "Etag", "AttestorType",
});
internal_static_google_cloud_binaryauthorization_v1_UserOwnedGrafeasNote_descriptor =
getDescriptor().getMessageType(4);
@@ -15076,7 +16116,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
new com.google.protobuf.GeneratedMessage.FieldAccessorTable(
internal_static_google_cloud_binaryauthorization_v1_PkixPublicKey_descriptor,
new java.lang.String[] {
- "PublicKeyPem", "SignatureAlgorithm",
+ "PublicKeyPem", "SignatureAlgorithm", "KeyId",
});
internal_static_google_cloud_binaryauthorization_v1_AttestorPublicKey_descriptor =
getDescriptor().getMessageType(6);
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/Service.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/Service.java
index 80a59514b882..3c642b852730 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/Service.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/java/com/google/protos/google/cloud/binaryauthorization/v1/Service.java
@@ -49,8 +49,9 @@ public interface GetPolicyRequestOrBuilder
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -65,8 +66,9 @@ public interface GetPolicyRequestOrBuilder
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -82,7 +84,8 @@ public interface GetPolicyRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.GetPolicy][].
+ * Request message for
+ * [BinauthzManagementServiceV1.GetPolicy][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.GetPolicy].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.GetPolicyRequest}
@@ -137,8 +140,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -164,8 +168,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -360,7 +365,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.GetPolicy][].
+ * Request message for
+ * [BinauthzManagementServiceV1.GetPolicy][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.GetPolicy].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.GetPolicyRequest}
@@ -528,8 +534,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -554,8 +561,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -580,8 +588,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -605,8 +614,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -626,8 +636,9 @@ public Builder clearName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1.Policy] to retrieve, in the
+ * format `projects/*/policy`.
*
*
*
@@ -714,9 +725,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -731,9 +744,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -748,9 +763,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -765,7 +782,8 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.UpdatePolicy][].
+ * Request message for
+ * [BinauthzManagementServiceV1.UpdatePolicy][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.UpdatePolicy].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UpdatePolicyRequest}
@@ -818,9 +836,11 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -838,9 +858,11 @@ public boolean hasPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -861,9 +883,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy ge
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1058,7 +1082,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.UpdatePolicy][].
+ * Request message for
+ * [BinauthzManagementServiceV1.UpdatePolicy][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.UpdatePolicy].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UpdatePolicyRequest}
@@ -1247,9 +1272,11 @@ public Builder mergeFrom(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1266,9 +1293,11 @@ public boolean hasPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1292,9 +1321,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Policy ge
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1320,9 +1351,11 @@ public Builder setPolicy(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1346,9 +1379,11 @@ public Builder setPolicy(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1381,9 +1416,11 @@ public Builder mergePolicy(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1405,9 +1442,11 @@ public Builder clearPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1425,9 +1464,11 @@ public Builder clearPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1450,9 +1491,11 @@ public Builder clearPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1.Policy] value. The service
+ * will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -1542,7 +1585,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -1557,7 +1601,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -1598,9 +1643,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1615,9 +1662,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1632,9 +1681,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1649,7 +1700,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.CreateAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.CreateAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.CreateAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.CreateAttestorRequest}
@@ -1707,7 +1759,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -1733,7 +1786,8 @@ public java.lang.String getParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -1815,9 +1869,11 @@ public com.google.protobuf.ByteString getAttestorIdBytes() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1835,9 +1891,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1858,9 +1916,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2085,7 +2145,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.CreateAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.CreateAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.CreateAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.CreateAttestorRequest}
@@ -2301,7 +2362,8 @@ public Builder mergeFrom(
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -2326,7 +2388,8 @@ public java.lang.String getParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -2351,7 +2414,8 @@ public com.google.protobuf.ByteString getParentBytes() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -2375,7 +2439,8 @@ public Builder setParent(java.lang.String value) {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -2395,7 +2460,8 @@ public Builder clearParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor].
*
*
*
@@ -2538,9 +2604,11 @@ public Builder setAttestorIdBytes(com.google.protobuf.ByteString value) {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2557,9 +2625,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2584,9 +2654,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2612,9 +2684,11 @@ public Builder setAttestor(
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2638,9 +2712,11 @@ public Builder setAttestor(
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2673,9 +2749,11 @@ public Builder mergeAttestor(
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2697,9 +2775,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2717,9 +2797,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2742,9 +2824,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -2835,8 +2919,9 @@ public interface GetAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -2851,8 +2936,9 @@ public interface GetAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -2868,7 +2954,8 @@ public interface GetAttestorRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.GetAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.GetAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.GetAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.GetAttestorRequest}
@@ -2924,8 +3011,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -2951,8 +3039,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3148,7 +3237,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.GetAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.GetAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.GetAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.GetAttestorRequest}
@@ -3316,8 +3406,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3342,8 +3433,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3368,8 +3460,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3393,8 +3486,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3414,8 +3508,9 @@ public Builder clearName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] to retrieve, in
+ * the format `projects/*/attestors/*`.
*
*
*
@@ -3502,9 +3597,11 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3519,9 +3616,11 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3536,9 +3635,11 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3553,7 +3654,8 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.UpdateAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.UpdateAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.UpdateAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UpdateAttestorRequest}
@@ -3606,9 +3708,11 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3626,9 +3730,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3649,9 +3755,11 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -3858,7 +3966,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.UpdateAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.UpdateAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.UpdateAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.UpdateAttestorRequest}
@@ -4049,9 +4158,11 @@ public Builder mergeFrom(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4068,9 +4179,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4095,9 +4208,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4123,9 +4238,11 @@ public Builder setAttestor(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4149,9 +4266,11 @@ public Builder setAttestor(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4184,9 +4303,11 @@ public Builder mergeAttestor(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4208,9 +4329,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4228,9 +4351,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4253,9 +4378,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1.Attestor] value. The service
+ * will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1.Attestor.name] field with the
+ * resource name in the request URL, in the format `projects/*/attestors/*`.
*
*
*
@@ -4347,7 +4474,8 @@ public interface ListAttestorsRequestOrBuilder
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -4363,7 +4491,8 @@ public interface ListAttestorsRequestOrBuilder
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -4393,8 +4522,9 @@ public interface ListAttestorsRequestOrBuilder
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -4408,8 +4538,9 @@ public interface ListAttestorsRequestOrBuilder
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -4423,7 +4554,8 @@ public interface ListAttestorsRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.ListAttestors][].
+ * Request message for
+ * [BinauthzManagementServiceV1.ListAttestors][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.ListAttestors].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.ListAttestorsRequest}
@@ -4481,7 +4613,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -4508,7 +4641,8 @@ public java.lang.String getParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -4560,8 +4694,9 @@ public int getPageSize() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -4586,8 +4721,9 @@ public java.lang.String getPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -4799,7 +4935,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.ListAttestors][].
+ * Request message for
+ * [BinauthzManagementServiceV1.ListAttestors][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.ListAttestors].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.ListAttestorsRequest}
@@ -4999,7 +5136,8 @@ public Builder mergeFrom(
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -5025,7 +5163,8 @@ public java.lang.String getParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -5051,7 +5190,8 @@ public com.google.protobuf.ByteString getParentBytes() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -5076,7 +5216,8 @@ public Builder setParent(java.lang.String value) {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -5097,7 +5238,8 @@ public Builder clearParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor], in the format
+ * `projects/*`.
*
*
*
@@ -5184,8 +5326,9 @@ public Builder clearPageSize() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -5209,8 +5352,9 @@ public java.lang.String getPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -5234,8 +5378,9 @@ public com.google.protobuf.ByteString getPageTokenBytes() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -5258,8 +5403,9 @@ public Builder setPageToken(java.lang.String value) {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -5278,8 +5424,9 @@ public Builder clearPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -5426,8 +5573,9 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor getAtte
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -5441,8 +5589,9 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor getAtte
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -5456,7 +5605,8 @@ com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor getAtte
*
*
*
- * Response message for [BinauthzManagementService.ListAttestors][].
+ * Response message for
+ * [BinauthzManagementServiceV1.ListAttestors][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.ListAttestors].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.ListAttestorsResponse}
@@ -5596,8 +5746,9 @@ public com.google.protos.google.cloud.binaryauthorization.v1.Resources.Attestor
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -5622,8 +5773,9 @@ public java.lang.String getNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -5840,7 +5992,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Response message for [BinauthzManagementService.ListAttestors][].
+ * Response message for
+ * [BinauthzManagementServiceV1.ListAttestors][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.ListAttestors].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.ListAttestorsResponse}
@@ -6476,8 +6629,9 @@ public Builder removeAttestors(int index) {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -6501,8 +6655,9 @@ public java.lang.String getNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -6526,8 +6681,9 @@ public com.google.protobuf.ByteString getNextPageTokenBytes() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -6550,8 +6706,9 @@ public Builder setNextPageToken(java.lang.String value) {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -6570,8 +6727,9 @@ public Builder clearNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -6657,8 +6815,9 @@ public interface DeleteAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -6673,8 +6832,9 @@ public interface DeleteAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -6690,7 +6850,8 @@ public interface DeleteAttestorRequestOrBuilder
*
*
*
- * Request message for [BinauthzManagementService.DeleteAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.DeleteAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.DeleteAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.DeleteAttestorRequest}
@@ -6746,8 +6907,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -6773,8 +6935,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -6982,7 +7145,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * Request message for [BinauthzManagementService.DeleteAttestor][].
+ * Request message for
+ * [BinauthzManagementServiceV1.DeleteAttestor][google.cloud.binaryauthorization.v1.BinauthzManagementServiceV1.DeleteAttestor].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1.DeleteAttestorRequest}
@@ -7153,8 +7317,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -7179,8 +7344,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -7205,8 +7371,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -7230,8 +7397,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -7251,8 +7419,9 @@ public Builder clearName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1.Attestor] to delete, in the
+ * format `projects/*/attestors/*`.
*
*
*
@@ -8026,7 +8195,8 @@ public interface ValidateAttestationOccurrenceRequestOrBuilder
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8041,7 +8211,8 @@ public interface ValidateAttestationOccurrenceRequestOrBuilder
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8057,9 +8228,9 @@ public interface ValidateAttestationOccurrenceRequestOrBuilder
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8075,9 +8246,9 @@ public interface ValidateAttestationOccurrenceRequestOrBuilder
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8093,9 +8264,9 @@ public interface ValidateAttestationOccurrenceRequestOrBuilder
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8227,7 +8398,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8253,7 +8425,8 @@ public java.lang.String getAttestor() {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8283,9 +8456,9 @@ public com.google.protobuf.ByteString getAttestorBytes() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8304,9 +8477,9 @@ public boolean hasAttestation() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8327,9 +8500,9 @@ public io.grafeas.v1.AttestationOccurrence getAttestation() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -8921,7 +9094,8 @@ public Builder mergeFrom(
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8946,7 +9120,8 @@ public java.lang.String getAttestor() {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8971,7 +9146,8 @@ public com.google.protobuf.ByteString getAttestorBytes() {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -8995,7 +9171,8 @@ public Builder setAttestor(java.lang.String value) {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -9015,7 +9192,8 @@ public Builder clearAttestor() {
*
*
*
- * Required. The resource name of the [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
+ * Required. The resource name of the
+ * [Attestor][google.cloud.binaryauthorization.v1.Attestor] of the
* [occurrence][grafeas.v1.Occurrence], in the format
* `projects/*/attestors/*`.
*
@@ -9048,9 +9226,9 @@ public Builder setAttestorBytes(com.google.protobuf.ByteString value) {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9068,9 +9246,9 @@ public boolean hasAttestation() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9094,9 +9272,9 @@ public io.grafeas.v1.AttestationOccurrence getAttestation() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9122,9 +9300,9 @@ public Builder setAttestation(io.grafeas.v1.AttestationOccurrence value) {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9147,9 +9325,9 @@ public Builder setAttestation(io.grafeas.v1.AttestationOccurrence.Builder builde
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9180,9 +9358,9 @@ public Builder mergeAttestation(io.grafeas.v1.AttestationOccurrence value) {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9205,9 +9383,9 @@ public Builder clearAttestation() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9225,9 +9403,9 @@ public io.grafeas.v1.AttestationOccurrence.Builder getAttestationBuilder() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9249,9 +9427,9 @@ public io.grafeas.v1.AttestationOccurrenceOrBuilder getAttestationOrBuilder() {
*
*
* Required. An [AttestationOccurrence][grafeas.v1.AttestationOccurrence] to
- * be checked that it can be verified by the Attestor. It does not have to be
- * an existing entity in Container Analysis. It must otherwise be a valid
- * AttestationOccurrence.
+ * be checked that it can be verified by the `Attestor`. It does not have to
+ * be an existing entity in Container Analysis. It must otherwise be a valid
+ * `AttestationOccurrence`.
*
*
*
@@ -9690,7 +9868,7 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * The enum returned in the "result" field.
+ * The enum returned in the `result` field.
*
*
* Protobuf enum {@code
@@ -10792,14 +10970,14 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "stors/*}:validateAttestationOccurrence:\001"
+ "*\032V\312A\"binaryauthorization.googleapis.com"
+ "\322A.https://www.googleapis.com/auth/cloud"
- + "-platformB\214\002\n5com.google.protos.google.c"
+ + "-platformB\211\002\n5com.google.protos.google.c"
+ "loud.binaryauthorization.v1P\000ZYcloud.goo"
+ "gle.com/go/binaryauthorization/apiv1/bin"
+ "aryauthorizationpb;binaryauthorizationpb"
- + "\370\001\001\252\002#Google.Cloud.BinaryAuthorization.V"
- + "1\312\002#Google\\Cloud\\BinaryAuthorization\\V1\352"
- + "\002&Google::Cloud::BinaryAuthorization::V1"
- + "b\006proto3"
+ + "\252\002#Google.Cloud.BinaryAuthorization.V1\312\002"
+ + "#Google\\Cloud\\BinaryAuthorization\\V1\352\002&G"
+ + "oogle::Cloud::BinaryAuthorization::V1b\006p"
+ + "roto3"
};
descriptor =
com.google.protobuf.Descriptors.FileDescriptor.internalBuildGeneratedFileFrom(
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/proto/google/cloud/binaryauthorization/v1/resources.proto b/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/proto/google/cloud/binaryauthorization/v1/resources.proto
index 4f1397f306f6..45f820539291 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/proto/google/cloud/binaryauthorization/v1/resources.proto
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1/src/main/proto/google/cloud/binaryauthorization/v1/resources.proto
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC
+// Copyright 2026 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
@@ -20,7 +20,6 @@ import "google/api/field_behavior.proto";
import "google/api/resource.proto";
import "google/protobuf/timestamp.proto";
-option cc_enable_arenas = true;
option csharp_namespace = "Google.Cloud.BinaryAuthorization.V1";
option go_package = "cloud.google.com/go/binaryauthorization/apiv1/binaryauthorizationpb;binaryauthorizationpb";
option java_multiple_files = false;
@@ -28,7 +27,10 @@ option java_package = "com.google.protos.google.cloud.binaryauthorization.v1";
option php_namespace = "Google\\Cloud\\BinaryAuthorization\\V1";
option ruby_package = "Google::Cloud::BinaryAuthorization::V1";
-// A [policy][google.cloud.binaryauthorization.v1.Policy] for container image binary authorization.
+// LINT: LEGACY_NAMES
+
+// A [policy][google.cloud.binaryauthorization.v1.Policy] for container image
+// binary authorization.
message Policy {
option (google.api.resource) = {
type: "binaryauthorization.googleapis.com/Policy"
@@ -37,7 +39,7 @@ message Policy {
};
enum GlobalPolicyEvaluationMode {
- // Not specified: DISABLE is assumed.
+ // Not specified: `DISABLE` is assumed.
GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED = 0;
// Enables system policy evaluation.
@@ -58,47 +60,68 @@ message Policy {
// policy for common system-level images. Images not covered by the global
// policy will be subject to the project admission policy. This setting
// has no effect when specified inside a global admission policy.
- GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(google.api.field_behavior) = OPTIONAL];
+ GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7
+ [(google.api.field_behavior) = OPTIONAL];
// Optional. Admission policy allowlisting. A matching admission request will
// always be permitted. This feature is typically used to exclude Google or
// third-party infrastructure images from Binary Authorization policies.
- repeated AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(google.api.field_behavior) = OPTIONAL];
-
- // Optional. Per-cluster admission rules. Cluster spec format:
+ repeated AdmissionWhitelistPattern admission_whitelist_patterns = 2
+ [(google.api.field_behavior) = OPTIONAL];
+
+ // Optional. A valid policy has only one of the following rule maps non-empty,
+ // i.e. only one of `cluster_admission_rules`,
+ // `kubernetes_namespace_admission_rules`,
+ // `kubernetes_service_account_admission_rules`,
+ // or `istio_service_identity_admission_rules` can be non-empty.
+ // Per-cluster admission rules. Cluster spec format:
// `location.clusterId`. There can be at most one admission rule per cluster
// spec.
// A `location` is either a compute zone (e.g. us-central1-a) or a region
// (e.g. us-central1).
// For `clusterId` syntax restrictions see
// https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.
- map
- * An [admission rule][google.cloud.binaryauthorization.v1beta1.AdmissionRule] specifies either that all container images
- * used in a pod creation request must be attested to by one or more
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], that all pod creations will be allowed, or that all
- * pod creations will be denied.
+ * An [admission rule][google.cloud.binaryauthorization.v1beta1.AdmissionRule]
+ * specifies either that all container images used in a pod creation request
+ * must be attested to by one or more
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], that all pod
+ * creations will be allowed, or that all pod creations will be denied.
*
- * Images matching an [admission allowlist pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
+ * Images matching an [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
* are exempted from admission rules and will never block a pod creation.
*
*
@@ -272,6 +274,8 @@ private EvaluationMode(int value) {
*
*
*
+ * TODO(wietse) re-word this text to 'per-image' instead of 'per-pod' and to
+ * allow for three-way evaluation (allow, deny, delegate).
* Defines the possible actions when a pod creation is denied by an admission
* rule.
*
@@ -496,19 +500,6 @@ public int getEvaluationModeValue() {
com.google.protobuf.LazyStringArrayList.emptyList();
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -519,19 +510,6 @@ public com.google.protobuf.ProtocolStringList getRequireAttestationsByList() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -542,19 +520,6 @@ public int getRequireAttestationsByCount() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -566,19 +531,6 @@ public java.lang.String getRequireAttestationsBy(int index) {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -836,12 +788,14 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [admission rule][google.cloud.binaryauthorization.v1beta1.AdmissionRule] specifies either that all container images
- * used in a pod creation request must be attested to by one or more
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], that all pod creations will be allowed, or that all
- * pod creations will be denied.
+ * An [admission rule][google.cloud.binaryauthorization.v1beta1.AdmissionRule]
+ * specifies either that all container images used in a pod creation request
+ * must be attested to by one or more
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], that all pod
+ * creations will be allowed, or that all pod creations will be denied.
*
- * Images matching an [admission allowlist pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
+ * Images matching an [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
* are exempted from admission rules and will never block a pod creation.
*
*
@@ -1143,19 +1097,6 @@ private void ensureRequireAttestationsByIsMutable() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1167,19 +1108,6 @@ public com.google.protobuf.ProtocolStringList getRequireAttestationsByList() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1190,19 +1118,6 @@ public int getRequireAttestationsByCount() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1214,19 +1129,6 @@ public java.lang.String getRequireAttestationsBy(int index) {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1238,19 +1140,6 @@ public com.google.protobuf.ByteString getRequireAttestationsByBytes(int index) {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1270,19 +1159,6 @@ public Builder setRequireAttestationsBy(int index, java.lang.String value) {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1301,19 +1177,6 @@ public Builder addRequireAttestationsBy(java.lang.String value) {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1329,19 +1192,6 @@ public Builder addAllRequireAttestationsBy(java.lang.Iterable
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -1356,19 +1206,6 @@ public Builder clearRequireAttestationsBy() {
}
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionRuleOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionRuleOrBuilder.java
index e58599b9a2fe..c2501c960c5c 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionRuleOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionRuleOrBuilder.java
@@ -57,19 +57,6 @@ public interface AdmissionRuleOrBuilder
com.google.cloud.binaryauthorization.v1beta1.AdmissionRule.EvaluationMode getEvaluationMode();
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -78,19 +65,6 @@ public interface AdmissionRuleOrBuilder
java.util.List
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -99,19 +73,6 @@ public interface AdmissionRuleOrBuilder
int getRequireAttestationsByCount();
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
@@ -121,19 +82,6 @@ public interface AdmissionRuleOrBuilder
java.lang.String getRequireAttestationsBy(int index);
/**
- *
- *
- *
- * Optional. The resource names of the attestors that must attest to
- * a container image, in the format `projects/*/attestors/*`. Each
- * attestor must exist before a policy can reference it. To add an attestor
- * to a policy the principal issuing the policy change request must be able
- * to read the attestor resource.
- *
- * Note: this field must be non-empty when the evaluation_mode field specifies
- * REQUIRE_ATTESTATION, otherwise it must be empty.
- *
- *
* repeated string require_attestations_by = 2 [(.google.api.field_behavior) = OPTIONAL];
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionWhitelistPattern.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionWhitelistPattern.java
index 65323170cd13..dd9333ff5ff5 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionWhitelistPattern.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AdmissionWhitelistPattern.java
@@ -24,8 +24,10 @@
*
*
*
- * An [admission allowlist pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern] exempts images
- * from checks by [admission rules][google.cloud.binaryauthorization.v1beta1.AdmissionRule].
+ * An [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
+ * exempts images from checks by [admission
+ * rules][google.cloud.binaryauthorization.v1beta1.AdmissionRule].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern}
@@ -302,8 +304,10 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [admission allowlist pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern] exempts images
- * from checks by [admission rules][google.cloud.binaryauthorization.v1beta1.AdmissionRule].
+ * An [admission allowlist
+ * pattern][google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern]
+ * exempts images from checks by [admission
+ * rules][google.cloud.binaryauthorization.v1beta1.AdmissionRule].
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.AdmissionWhitelistPattern}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Attestor.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Attestor.java
index 0a91fd2b5cb6..2d1f99fb82b7 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Attestor.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Attestor.java
@@ -24,9 +24,9 @@
*
*
*
- * An [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] that attests to container image
- * artifacts. An existing attestor cannot be modified except where
- * indicated.
+ * An [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] that attests
+ * to container image artifacts. An existing attestor cannot be modified except
+ * where indicated.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.Attestor}
@@ -56,6 +56,7 @@ private Attestor(com.google.protobuf.GeneratedMessage.Builder> builder) {
private Attestor() {
name_ = "";
description_ = "";
+ etag_ = "";
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -345,6 +346,63 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTime_ == null ? com.google.protobuf.Timestamp.getDefaultInstance() : updateTime_;
}
+ public static final int ETAG_FIELD_NUMBER = 7;
+
+ @SuppressWarnings("serial")
+ private volatile java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ @java.lang.Override
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ return (java.lang.String) ref;
+ } else {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ @java.lang.Override
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -372,6 +430,9 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
if (!com.google.protobuf.GeneratedMessage.isStringEmpty(description_)) {
com.google.protobuf.GeneratedMessage.writeString(output, 6, description_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ com.google.protobuf.GeneratedMessage.writeString(output, 7, etag_);
+ }
getUnknownFields().writeTo(output);
}
@@ -395,6 +456,9 @@ public int getSerializedSize() {
if (!com.google.protobuf.GeneratedMessage.isStringEmpty(description_)) {
size += com.google.protobuf.GeneratedMessage.computeStringSize(6, description_);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ size += com.google.protobuf.GeneratedMessage.computeStringSize(7, etag_);
+ }
size += getUnknownFields().getSerializedSize();
memoizedSize = size;
return size;
@@ -417,6 +481,7 @@ public boolean equals(final java.lang.Object obj) {
if (hasUpdateTime()) {
if (!getUpdateTime().equals(other.getUpdateTime())) return false;
}
+ if (!getEtag().equals(other.getEtag())) return false;
if (!getAttestorTypeCase().equals(other.getAttestorTypeCase())) return false;
switch (attestorTypeCase_) {
case 3:
@@ -444,6 +509,8 @@ public int hashCode() {
hash = (37 * hash) + UPDATE_TIME_FIELD_NUMBER;
hash = (53 * hash) + getUpdateTime().hashCode();
}
+ hash = (37 * hash) + ETAG_FIELD_NUMBER;
+ hash = (53 * hash) + getEtag().hashCode();
switch (attestorTypeCase_) {
case 3:
hash = (37 * hash) + USER_OWNED_DRYDOCK_NOTE_FIELD_NUMBER;
@@ -558,9 +625,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] that attests to container image
- * artifacts. An existing attestor cannot be modified except where
- * indicated.
+ * An [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] that attests
+ * to container image artifacts. An existing attestor cannot be modified except
+ * where indicated.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.Attestor}
@@ -614,6 +681,7 @@ public Builder clear() {
updateTimeBuilder_.dispose();
updateTimeBuilder_ = null;
}
+ etag_ = "";
attestorTypeCase_ = 0;
attestorType_ = null;
return this;
@@ -664,6 +732,9 @@ private void buildPartial0(com.google.cloud.binaryauthorization.v1beta1.Attestor
result.updateTime_ = updateTimeBuilder_ == null ? updateTime_ : updateTimeBuilder_.build();
to_bitField0_ |= 0x00000001;
}
+ if (((from_bitField0_ & 0x00000010) != 0)) {
+ result.etag_ = etag_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -701,6 +772,11 @@ public Builder mergeFrom(com.google.cloud.binaryauthorization.v1beta1.Attestor o
if (other.hasUpdateTime()) {
mergeUpdateTime(other.getUpdateTime());
}
+ if (!other.getEtag().isEmpty()) {
+ etag_ = other.etag_;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ }
switch (other.getAttestorTypeCase()) {
case USER_OWNED_DRYDOCK_NOTE:
{
@@ -764,6 +840,12 @@ public Builder mergeFrom(
bitField0_ |= 0x00000002;
break;
} // case 50
+ case 58:
+ {
+ etag_ = input.readStringRequireUtf8();
+ bitField0_ |= 0x00000010;
+ break;
+ } // case 58
default:
{
if (!super.parseUnknownField(input, extensionRegistry, tag)) {
@@ -1490,6 +1572,127 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTimeBuilder_;
}
+ private java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (!(ref instanceof java.lang.String)) {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ } else {
+ return (java.lang.String) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtag(java.lang.String value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ etag_ = value;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearEtag() {
+ etag_ = getDefaultInstance().getEtag();
+ bitField0_ = (bitField0_ & ~0x00000010);
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The bytes for etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtagBytes(com.google.protobuf.ByteString value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ checkByteStringIsUtf8(value);
+ etag_ = value;
+ bitField0_ |= 0x00000010;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1beta1.Attestor)
}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorOrBuilder.java
index d61c694dfe8a..f7b7d0381406 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorOrBuilder.java
@@ -166,5 +166,35 @@ public interface AttestorOrBuilder
*/
com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder();
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ java.lang.String getEtag();
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the attestor has an up-to-date value before attempting
+ * to update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 7 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ com.google.protobuf.ByteString getEtagBytes();
+
com.google.cloud.binaryauthorization.v1beta1.Attestor.AttestorTypeCase getAttestorTypeCase();
}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorPublicKey.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorPublicKey.java
index f9960c4d6cae..fadf12a9d0a8 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorPublicKey.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/AttestorPublicKey.java
@@ -24,8 +24,9 @@
*
*
*
- * An [attestor public key][google.cloud.binaryauthorization.v1beta1.AttestorPublicKey] that will be used to verify
- * attestations signed by this attestor.
+ * An [attestor public
+ * key][google.cloud.binaryauthorization.v1beta1.AttestorPublicKey] that will be
+ * used to verify attestations signed by this attestor.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.AttestorPublicKey}
@@ -617,8 +618,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [attestor public key][google.cloud.binaryauthorization.v1beta1.AttestorPublicKey] that will be used to verify
- * attestations signed by this attestor.
+ * An [attestor public
+ * key][google.cloud.binaryauthorization.v1beta1.AttestorPublicKey] that will be
+ * used to verify attestations signed by this attestor.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.AttestorPublicKey}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationResourcesProto.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationResourcesProto.java
index 6445e5e0c270..61a27ba0f7ad 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationResourcesProto.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationResourcesProto.java
@@ -93,121 +93,112 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
static {
java.lang.String[] descriptorData = {
- "\n"
- + "8google/cloud/binaryauthorization/v1beta1/resources.proto\022(google.cloud.binarya"
+ "\n8google/cloud/binaryauthorization/v1bet"
+ + "a1/resources.proto\022(google.cloud.binarya"
+ "uthorization.v1beta1\032\037google/api/field_b"
- + "ehavior.proto\032\031google/api/resource.proto\032\037google/protobuf/timestamp.proto\"\261\r\n"
- + "\006Policy\022\021\n"
- + "\004name\030\001 \001(\tB\003\340A\003\022\030\n"
- + "\013description\030\006 \001(\tB\003\340A\001\022w\n"
- + "\035global_policy_evaluation_mode\030\007 \001(\0162K.google.cloud.binaryauthorizat"
- + "ion.v1beta1.Policy.GlobalPolicyEvaluationModeB\003\340A\001\022n\n"
- + "\034admission_whitelist_patterns\030\002 \003(\0132C.google.cloud.binaryauthorizat"
- + "ion.v1beta1.AdmissionWhitelistPatternB\003\340A\001\022q\n"
- + "\027cluster_admission_rules\030\003 \003(\0132K.go"
+ + "ehavior.proto\032\031google/api/resource.proto"
+ + "\032\037google/protobuf/timestamp.proto\"\304\r\n\006Po"
+ + "licy\022\021\n\004name\030\001 \001(\tB\003\340A\003\022\030\n\013description\030\006"
+ + " \001(\tB\003\340A\001\022w\n\035global_policy_evaluation_mo"
+ + "de\030\007 \001(\0162K.google.cloud.binaryauthorizat"
+ + "ion.v1beta1.Policy.GlobalPolicyEvaluatio"
+ + "nModeB\003\340A\001\022n\n\034admission_whitelist_patter"
+ + "ns\030\002 \003(\0132C.google.cloud.binaryauthorizat"
+ + "ion.v1beta1.AdmissionWhitelistPatternB\003\340"
+ + "A\001\022q\n\027cluster_admission_rules\030\003 \003(\0132K.go"
+ "ogle.cloud.binaryauthorization.v1beta1.P"
- + "olicy.ClusterAdmissionRulesEntryB\003\340A\001\022\212\001\n"
- + "$kubernetes_namespace_admission_rules\030\n"
+ + "olicy.ClusterAdmissionRulesEntryB\003\340A\001\022\212\001"
+ + "\n$kubernetes_namespace_admission_rules\030\n"
+ " \003(\0132W.google.cloud.binaryauthorization."
- + "v1beta1.Policy.KubernetesNamespaceAdmissionRulesEntryB\003\340A\001\022\225\001\n"
- + "*kubernetes_service_account_admission_rules\030\010 \003(\0132\\.google"
+ + "v1beta1.Policy.KubernetesNamespaceAdmiss"
+ + "ionRulesEntryB\003\340A\001\022\225\001\n*kubernetes_servic"
+ + "e_account_admission_rules\030\010 \003(\0132\\.google"
+ ".cloud.binaryauthorization.v1beta1.Polic"
- + "y.KubernetesServiceAccountAdmissionRulesEntryB\003\340A\001\022\215\001\n"
- + "&istio_service_identity_admission_rules\030\t \003(\0132X.google.cloud.binar"
- + "yauthorization.v1beta1.Policy.IstioServiceIdentityAdmissionRulesEntryB\003\340A\001\022\\\n"
- + "\026default_admission_rule\030\004 \001(\01327.google.clou"
- + "d.binaryauthorization.v1beta1.AdmissionRuleB\003\340A\002\0224\n"
- + "\013update_time\030\005 \001(\0132\032.google.protobuf.TimestampB\003\340A\003\032u\n"
- + "\032ClusterAdmissionRulesEntry\022\013\n"
- + "\003key\030\001 \001(\t\022F\n"
- + "\005value\030\002 \001(\013"
- + "27.google.cloud.binaryauthorization.v1beta1.AdmissionRule:\0028\001\032\201\001\n"
- + "&KubernetesNamespaceAdmissionRulesEntry\022\013\n"
- + "\003key\030\001 \001(\t\022F\n"
- + "\005value\030\002"
- + " \001(\01327.google.cloud.binaryauthorization.v1beta1.AdmissionRule:\0028\001\032\206\001\n"
- + "+KubernetesServiceAccountAdmissionRulesEntry\022\013\n"
- + "\003key\030\001 \001(\t\022F\n"
- + "\005value\030\002 \001(\01327.google.c"
- + "loud.binaryauthorization.v1beta1.AdmissionRule:\0028\001\032\202\001\n"
- + "\'IstioServiceIdentityAdmissionRulesEntry\022\013\n"
- + "\003key\030\001 \001(\t\022F\n"
- + "\005value\030\002 \001"
- + "(\01327.google.cloud.binaryauthorization.v1beta1.AdmissionRule:\0028\001\"d\n"
- + "\032GlobalPolicyEvaluationMode\022-\n"
- + ")GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED\020\000\022\n\n"
- + "\006ENABLE\020\001\022\013\n"
- + "\007DISABLE\020\002:f\352Ac\n"
- + ")binaryauthorization.googleap"
- + "is.com/Policy\022\031projects/{project}/policy\022\033locations/{location}/policy\"1\n"
- + "\031AdmissionWhitelistPattern\022\024\n"
- + "\014name_pattern\030\001 \001(\t\"\344\003\n\r"
- + "AdmissionRule\022d\n"
- + "\017evaluation_mode\030\001 \001(\0162F.google.cloud.binaryauthorization.v"
- + "1beta1.AdmissionRule.EvaluationModeB\003\340A\002\022$\n"
- + "\027require_attestations_by\030\002 \003(\tB\003\340A\001\022f\n"
- + "\020enforcement_mode\030\003 \001(\0162G.google.cloud."
- + "binaryauthorization.v1beta1.AdmissionRule.EnforcementModeB\003\340A\002\"m\n"
- + "\016EvaluationMode\022\037\n"
- + "\033EVALUATION_MODE_UNSPECIFIED\020\000\022\020\n"
- + "\014ALWAYS_ALLOW\020\001\022\027\n"
- + "\023REQUIRE_ATTESTATION\020\002\022\017\n"
- + "\013ALWAYS_DENY\020\003\"p\n"
- + "\017EnforcementMode\022 \n"
- + "\034ENFORCEMENT_MODE_UNSPECIFIED\020\000\022 \n"
- + "\034ENFORCED_BLOCK_AND_AUDIT_LOG\020\001\022\031\n"
- + "\025DRYRUN_AUDIT_LOG_ONLY\020\002\"\274\002\n"
- + "\010Attestor\022\021\n"
- + "\004name\030\001 \001(\tB\003\340A\002\022\030\n"
- + "\013description\030\006 \001(\tB\003\340A\001\022a\n"
- + "\027user_owned_drydock_note\030\003 \001(\0132>.google.cloud.binary"
- + "authorization.v1beta1.UserOwnedDrydockNoteH\000\0224\n"
- + "\013update_time\030\004"
- + " \001(\0132\032.google.protobuf.TimestampB\003\340A\003:Y\352AV\n"
- + "+binaryauthoriza"
- + "tion.googleapis.com/Attestor\022\'projects/{project}/attestors/{attestor}B\017\n\r"
- + "attestor_type\"\271\001\n"
- + "\024UserOwnedDrydockNote\022\033\n"
- + "\016note_reference\030\001 \001(\tB\003\340A\002\022U\n"
- + "\013public_keys\030\002 \003("
- + "\0132;.google.cloud.binaryauthorization.v1beta1.AttestorPublicKeyB\003\340A\001\022-\n"
- + " delegation_service_account_email\030\003 \001(\tB\003\340A\003\"\304\004\n\r"
- + "PkixPublicKey\022\026\n"
- + "\016public_key_pem\030\001 \001(\t\022g\n"
- + "\023signature_algorithm\030\002 \001(\0162J.google.cloud"
- + ".binaryauthorization.v1beta1.PkixPublicKey.SignatureAlgorithm\"\261\003\n"
- + "\022SignatureAlgorithm\022#\n"
- + "\037SIGNATURE_ALGORITHM_UNSPECIFIED\020\000\022\027\n"
- + "\023RSA_PSS_2048_SHA256\020\001\022\027\n"
- + "\023RSA_PSS_3072_SHA256\020\002\022\027\n"
- + "\023RSA_PSS_4096_SHA256\020\003\022\027\n"
- + "\023RSA_PSS_4096_SHA512\020\004\022\036\n"
- + "\032RSA_SIGN_PKCS1_2048_SHA256\020\005\022\036\n"
- + "\032RSA_SIGN_PKCS1_3072_SHA256\020\006\022\036\n"
- + "\032RSA_SIGN_PKCS1_4096_SHA256\020\007\022\036\n"
- + "\032RSA_SIGN_PKCS1_4096_SHA512\020\010\022\025\n"
- + "\021ECDSA_P256_SHA256\020\t\022\027\n"
- + "\023EC_SIGN_P256_SHA256\020\t\022\025\n"
- + "\021ECDSA_P384_SHA384\020\n"
- + "\022\027\n"
- + "\023EC_SIGN_P384_SHA384\020\n"
- + "\022\025\n"
- + "\021ECDSA_P521_SHA512\020\013\022\027\n"
- + "\023EC_SIGN_P521_SHA512\020\013\032\002\020\001\"\277\001\n"
- + "\021AttestorPublicKey\022\024\n"
- + "\007comment\030\001 \001(\tB\003\340A\001\022\n\n"
- + "\002id\030\002 \001(\t\022&\n"
- + "\034ascii_armored_pgp_public_key\030\003 \001(\tH\000\022R\n"
- + "\017pkix_public_key\030\005"
- + " \001(\01327.google.cloud.binaryauthorization.v1beta1.PkixPublicKeyH\000B\014\n"
- + "\n"
- + "public_keyB\272\002\n"
- + ",com.google.cloud.binaryauthorization.v1beta1B!BinaryAuthorizatio"
- + "nResourcesProtoP\001Z^cloud.google.com/go/binaryauthorization/apiv1beta1/binaryauth"
- + "orizationpb;binaryauthorizationpb\370\001\001\252\002(G"
- + "oogle.Cloud.BinaryAuthorization.V1Beta1\312"
- + "\002(Google\\Cloud\\BinaryAuthorization\\V1bet"
- + "a1\352\002+Google::Cloud::BinaryAuthorization::V1beta1b\006proto3"
+ + "y.KubernetesServiceAccountAdmissionRules"
+ + "EntryB\003\340A\001\022\215\001\n&istio_service_identity_ad"
+ + "mission_rules\030\t \003(\0132X.google.cloud.binar"
+ + "yauthorization.v1beta1.Policy.IstioServi"
+ + "ceIdentityAdmissionRulesEntryB\003\340A\001\022\\\n\026de"
+ + "fault_admission_rule\030\004 \001(\01327.google.clou"
+ + "d.binaryauthorization.v1beta1.AdmissionR"
+ + "uleB\003\340A\002\0224\n\013update_time\030\005 \001(\0132\032.google.p"
+ + "rotobuf.TimestampB\003\340A\003\022\021\n\004etag\030\013 \001(\tB\003\340A"
+ + "\001\032u\n\032ClusterAdmissionRulesEntry\022\013\n\003key\030\001"
+ + " \001(\t\022F\n\005value\030\002 \001(\01327.google.cloud.binar"
+ + "yauthorization.v1beta1.AdmissionRule:\0028\001"
+ + "\032\201\001\n&KubernetesNamespaceAdmissionRulesEn"
+ + "try\022\013\n\003key\030\001 \001(\t\022F\n\005value\030\002 \001(\01327.google"
+ + ".cloud.binaryauthorization.v1beta1.Admis"
+ + "sionRule:\0028\001\032\206\001\n+KubernetesServiceAccoun"
+ + "tAdmissionRulesEntry\022\013\n\003key\030\001 \001(\t\022F\n\005val"
+ + "ue\030\002 \001(\01327.google.cloud.binaryauthorizat"
+ + "ion.v1beta1.AdmissionRule:\0028\001\032\202\001\n\'IstioS"
+ + "erviceIdentityAdmissionRulesEntry\022\013\n\003key"
+ + "\030\001 \001(\t\022F\n\005value\030\002 \001(\01327.google.cloud.bin"
+ + "aryauthorization.v1beta1.AdmissionRule:\002"
+ + "8\001\"d\n\032GlobalPolicyEvaluationMode\022-\n)GLOB"
+ + "AL_POLICY_EVALUATION_MODE_UNSPECIFIED\020\000\022"
+ + "\n\n\006ENABLE\020\001\022\013\n\007DISABLE\020\002:f\352Ac\n)binaryaut"
+ + "horization.googleapis.com/Policy\022\031projec"
+ + "ts/{project}/policy\022\033locations/{location"
+ + "}/policy\"1\n\031AdmissionWhitelistPattern\022\024\n"
+ + "\014name_pattern\030\001 \001(\t\"\344\003\n\rAdmissionRule\022d\n"
+ + "\017evaluation_mode\030\001 \001(\0162F.google.cloud.bi"
+ + "naryauthorization.v1beta1.AdmissionRule."
+ + "EvaluationModeB\003\340A\002\022$\n\027require_attestati"
+ + "ons_by\030\002 \003(\tB\003\340A\001\022f\n\020enforcement_mode\030\003 "
+ + "\001(\0162G.google.cloud.binaryauthorization.v"
+ + "1beta1.AdmissionRule.EnforcementModeB\003\340A"
+ + "\002\"m\n\016EvaluationMode\022\037\n\033EVALUATION_MODE_U"
+ + "NSPECIFIED\020\000\022\020\n\014ALWAYS_ALLOW\020\001\022\027\n\023REQUIR"
+ + "E_ATTESTATION\020\002\022\017\n\013ALWAYS_DENY\020\003\"p\n\017Enfo"
+ + "rcementMode\022 \n\034ENFORCEMENT_MODE_UNSPECIF"
+ + "IED\020\000\022 \n\034ENFORCED_BLOCK_AND_AUDIT_LOG\020\001\022"
+ + "\031\n\025DRYRUN_AUDIT_LOG_ONLY\020\002\"\317\002\n\010Attestor\022"
+ + "\021\n\004name\030\001 \001(\tB\003\340A\002\022\030\n\013description\030\006 \001(\tB"
+ + "\003\340A\001\022a\n\027user_owned_drydock_note\030\003 \001(\0132>."
+ + "google.cloud.binaryauthorization.v1beta1"
+ + ".UserOwnedDrydockNoteH\000\0224\n\013update_time\030\004"
+ + " \001(\0132\032.google.protobuf.TimestampB\003\340A\003\022\021\n"
+ + "\004etag\030\007 \001(\tB\003\340A\001:Y\352AV\n+binaryauthorizati"
+ + "on.googleapis.com/Attestor\022\'projects/{pr"
+ + "oject}/attestors/{attestor}B\017\n\rattestor_"
+ + "type\"\271\001\n\024UserOwnedDrydockNote\022\033\n\016note_re"
+ + "ference\030\001 \001(\tB\003\340A\002\022U\n\013public_keys\030\002 \003(\0132"
+ + ";.google.cloud.binaryauthorization.v1bet"
+ + "a1.AttestorPublicKeyB\003\340A\001\022-\n delegation_"
+ + "service_account_email\030\003 \001(\tB\003\340A\003\"\313\005\n\rPki"
+ + "xPublicKey\022\026\n\016public_key_pem\030\001 \001(\t\022g\n\023si"
+ + "gnature_algorithm\030\002 \001(\0162J.google.cloud.b"
+ + "inaryauthorization.v1beta1.PkixPublicKey"
+ + ".SignatureAlgorithm\"\270\004\n\022SignatureAlgorit"
+ + "hm\022#\n\037SIGNATURE_ALGORITHM_UNSPECIFIED\020\000\022"
+ + "\027\n\023RSA_PSS_2048_SHA256\020\001\022\034\n\030RSA_SIGN_PSS"
+ + "_2048_SHA256\020\001\022\027\n\023RSA_PSS_3072_SHA256\020\002\022"
+ + "\034\n\030RSA_SIGN_PSS_3072_SHA256\020\002\022\027\n\023RSA_PSS"
+ + "_4096_SHA256\020\003\022\034\n\030RSA_SIGN_PSS_4096_SHA2"
+ + "56\020\003\022\027\n\023RSA_PSS_4096_SHA512\020\004\022\034\n\030RSA_SIG"
+ + "N_PSS_4096_SHA512\020\004\022\036\n\032RSA_SIGN_PKCS1_20"
+ + "48_SHA256\020\005\022\036\n\032RSA_SIGN_PKCS1_3072_SHA25"
+ + "6\020\006\022\036\n\032RSA_SIGN_PKCS1_4096_SHA256\020\007\022\036\n\032R"
+ + "SA_SIGN_PKCS1_4096_SHA512\020\010\022\025\n\021ECDSA_P25"
+ + "6_SHA256\020\t\022\027\n\023EC_SIGN_P256_SHA256\020\t\022\025\n\021E"
+ + "CDSA_P384_SHA384\020\n\022\027\n\023EC_SIGN_P384_SHA38"
+ + "4\020\n\022\025\n\021ECDSA_P521_SHA512\020\013\022\027\n\023EC_SIGN_P5"
+ + "21_SHA512\020\013\022\r\n\tML_DSA_65\020\r\032\002\020\001\"\277\001\n\021Attes"
+ + "torPublicKey\022\024\n\007comment\030\001 \001(\tB\003\340A\001\022\n\n\002id"
+ + "\030\002 \001(\t\022&\n\034ascii_armored_pgp_public_key\030\003"
+ + " \001(\tH\000\022R\n\017pkix_public_key\030\005 \001(\01327.google"
+ + ".cloud.binaryauthorization.v1beta1.PkixP"
+ + "ublicKeyH\000B\014\n\npublic_keyB\267\002\n,com.google."
+ + "cloud.binaryauthorization.v1beta1B!Binar"
+ + "yAuthorizationResourcesProtoP\001Z^cloud.go"
+ + "ogle.com/go/binaryauthorization/apiv1bet"
+ + "a1/binaryauthorizationpb;binaryauthoriza"
+ + "tionpb\252\002(Google.Cloud.BinaryAuthorizatio"
+ + "n.V1Beta1\312\002(Google\\Cloud\\BinaryAuthoriza"
+ + "tion\\V1beta1\352\002+Google::Cloud::BinaryAuth"
+ + "orization::V1beta1b\006proto3"
};
descriptor =
com.google.protobuf.Descriptors.FileDescriptor.internalBuildGeneratedFileFrom(
@@ -233,6 +224,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
"IstioServiceIdentityAdmissionRules",
"DefaultAdmissionRule",
"UpdateTime",
+ "Etag",
});
internal_static_google_cloud_binaryauthorization_v1beta1_Policy_ClusterAdmissionRulesEntry_descriptor =
internal_static_google_cloud_binaryauthorization_v1beta1_Policy_descriptor.getNestedType(0);
@@ -288,7 +280,7 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
new com.google.protobuf.GeneratedMessage.FieldAccessorTable(
internal_static_google_cloud_binaryauthorization_v1beta1_Attestor_descriptor,
new java.lang.String[] {
- "Name", "Description", "UserOwnedDrydockNote", "UpdateTime", "AttestorType",
+ "Name", "Description", "UserOwnedDrydockNote", "UpdateTime", "Etag", "AttestorType",
});
internal_static_google_cloud_binaryauthorization_v1beta1_UserOwnedDrydockNote_descriptor =
getDescriptor().getMessageType(4);
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationServiceProto.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationServiceProto.java
index 0c36f35653c4..b6aa53bac403 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationServiceProto.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/BinaryAuthorizationServiceProto.java
@@ -162,15 +162,15 @@ public static com.google.protobuf.Descriptors.FileDescriptor getDescriptor() {
+ "\002$\022\"/v1beta1/{name=locations/*/policy}\032V"
+ "\312A\"binaryauthorization.googleapis.com\322A."
+ "https://www.googleapis.com/auth/cloud-pl"
- + "atformB\270\002\n,com.google.cloud.binaryauthor"
+ + "atformB\265\002\n,com.google.cloud.binaryauthor"
+ "ization.v1beta1B\037BinaryAuthorizationServ"
+ "iceProtoP\001Z^cloud.google.com/go/binaryau"
+ "thorization/apiv1beta1/binaryauthorizati"
- + "onpb;binaryauthorizationpb\370\001\001\252\002(Google.C"
- + "loud.BinaryAuthorization.V1Beta1\312\002(Googl"
- + "e\\Cloud\\BinaryAuthorization\\V1beta1\352\002+Go"
- + "ogle::Cloud::BinaryAuthorization::V1beta"
- + "1b\006proto3"
+ + "onpb;binaryauthorizationpb\252\002(Google.Clou"
+ + "d.BinaryAuthorization.V1Beta1\312\002(Google\\C"
+ + "loud\\BinaryAuthorization\\V1beta1\352\002+Googl"
+ + "e::Cloud::BinaryAuthorization::V1beta1b\006"
+ + "proto3"
};
descriptor =
com.google.protobuf.Descriptors.FileDescriptor.internalBuildGeneratedFileFrom(
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequest.java
index 9814be31638a..50b82be46282 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequest.java
@@ -81,7 +81,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -107,7 +108,8 @@ public java.lang.String getParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -138,7 +140,8 @@ public com.google.protobuf.ByteString getParentBytes() {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -162,7 +165,8 @@ public java.lang.String getAttestorId() {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -189,9 +193,11 @@ public com.google.protobuf.ByteString getAttestorIdBytes() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -209,9 +215,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -231,9 +239,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -640,7 +650,8 @@ public Builder mergeFrom(
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -665,7 +676,8 @@ public java.lang.String getParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -690,7 +702,8 @@ public com.google.protobuf.ByteString getParentBytes() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -714,7 +727,8 @@ public Builder setParent(java.lang.String value) {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -734,7 +748,8 @@ public Builder clearParent() {
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -761,7 +776,8 @@ public Builder setParentBytes(com.google.protobuf.ByteString value) {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -784,7 +800,8 @@ public java.lang.String getAttestorId() {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -807,7 +824,8 @@ public com.google.protobuf.ByteString getAttestorIdBytes() {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -829,7 +847,8 @@ public Builder setAttestorId(java.lang.String value) {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -847,7 +866,8 @@ public Builder clearAttestorId() {
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -877,9 +897,11 @@ public Builder setAttestorIdBytes(com.google.protobuf.ByteString value) {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -896,9 +918,11 @@ public boolean hasAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -921,9 +945,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -948,9 +974,11 @@ public Builder setAttestor(com.google.cloud.binaryauthorization.v1beta1.Attestor
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -973,9 +1001,11 @@ public Builder setAttestor(
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1006,9 +1036,11 @@ public Builder mergeAttestor(com.google.cloud.binaryauthorization.v1beta1.Attest
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1030,9 +1062,11 @@ public Builder clearAttestor() {
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1049,9 +1083,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor.Builder getAttestor
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -1072,9 +1108,11 @@ public com.google.cloud.binaryauthorization.v1beta1.AttestorOrBuilder getAttesto
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequestOrBuilder.java
index ebbf8db71c06..662d76b594e2 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/CreateAttestorRequestOrBuilder.java
@@ -30,7 +30,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -45,7 +46,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The parent of this [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
+ * Required. The parent of this
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor].
*
*
*
@@ -60,7 +62,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -73,7 +76,8 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
+ * Required. The
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] ID.
*
*
* string attestor_id = 2 [(.google.api.field_behavior) = REQUIRED];
@@ -86,9 +90,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -103,9 +109,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
@@ -120,9 +128,11 @@ public interface CreateAttestorRequestOrBuilder
*
*
*
- * Required. The initial [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name,
- * in the format `projects/*/attestors/*`.
+ * Required. The initial
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name, in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequest.java
index 7195f9169a60..0609705bbf54 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequest.java
@@ -79,8 +79,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -106,8 +107,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -454,8 +456,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -480,8 +483,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -506,8 +510,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -531,8 +536,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -552,8 +558,9 @@ public Builder clearName() {
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequestOrBuilder.java
index f301fcc16b0f..ed95c2d45d70 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/DeleteAttestorRequestOrBuilder.java
@@ -30,8 +30,9 @@ public interface DeleteAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -46,8 +47,9 @@ public interface DeleteAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor] to delete,
+ * in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequest.java
index da2d3c6fac84..c9b3d0fe9923 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequest.java
@@ -79,8 +79,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -106,8 +107,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -450,8 +452,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -476,8 +479,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -502,8 +506,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -527,8 +532,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -548,8 +554,9 @@ public Builder clearName() {
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequestOrBuilder.java
index c4f309d60859..4acad1f6e69a 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetAttestorRequestOrBuilder.java
@@ -30,8 +30,9 @@ public interface GetAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
@@ -46,8 +47,9 @@ public interface GetAttestorRequestOrBuilder
*
*
*
- * Required. The name of the [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve, in the format
- * `projects/*/attestors/*`.
+ * Required. The name of the
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] to retrieve,
+ * in the format `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequest.java
index a5cb8c42c14c..331c8c3db010 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequest.java
@@ -79,8 +79,9 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -106,8 +107,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -449,8 +451,9 @@ public Builder mergeFrom(
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -475,8 +478,9 @@ public java.lang.String getName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -501,8 +505,9 @@ public com.google.protobuf.ByteString getNameBytes() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -526,8 +531,9 @@ public Builder setName(java.lang.String value) {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -547,8 +553,9 @@ public Builder clearName() {
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequestOrBuilder.java
index 0d5141c457ad..938961b120e8 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/GetPolicyRequestOrBuilder.java
@@ -30,8 +30,9 @@ public interface GetPolicyRequestOrBuilder
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
@@ -46,8 +47,9 @@ public interface GetPolicyRequestOrBuilder
*
*
*
- * Required. The resource name of the [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve,
- * in the format `projects/*/policy`.
+ * Required. The resource name of the
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] to retrieve, in
+ * the format `projects/*/policy`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequest.java
index 7231b8f01216..95056c57e3ec 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequest.java
@@ -81,7 +81,8 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -108,7 +109,8 @@ public java.lang.String getParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -160,8 +162,9 @@ public int getPageSize() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -186,8 +189,9 @@ public java.lang.String getPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -577,7 +581,8 @@ public Builder mergeFrom(
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -603,7 +608,8 @@ public java.lang.String getParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -629,7 +635,8 @@ public com.google.protobuf.ByteString getParentBytes() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -654,7 +661,8 @@ public Builder setParent(java.lang.String value) {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -675,7 +683,8 @@ public Builder clearParent() {
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -762,8 +771,9 @@ public Builder clearPageSize() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -787,8 +797,9 @@ public java.lang.String getPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -812,8 +823,9 @@ public com.google.protobuf.ByteString getPageTokenBytes() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -836,8 +848,9 @@ public Builder setPageToken(java.lang.String value) {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -856,8 +869,9 @@ public Builder clearPageToken() {
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequestOrBuilder.java
index 864335660bb8..9b5b16d23011 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsRequestOrBuilder.java
@@ -31,7 +31,8 @@ public interface ListAttestorsRequestOrBuilder
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -47,7 +48,8 @@ public interface ListAttestorsRequestOrBuilder
*
*
* Required. The resource name of the project associated with the
- * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the format `projects/*`.
+ * [attestors][google.cloud.binaryauthorization.v1beta1.Attestor], in the
+ * format `projects/*`.
*
*
*
@@ -77,8 +79,9 @@ public interface ListAttestorsRequestOrBuilder
*
*
*/
com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder();
+
+ /**
+ *
+ *
+ *
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
@@ -92,8 +95,9 @@ public interface ListAttestorsRequestOrBuilder
*
*
* A token identifying a page of results the server should return. Typically,
- * this is the value of [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token] returned
- * from the previous call to the `ListAttestors` method.
+ * this is the value of
+ * [ListAttestorsResponse.next_page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsResponse.next_page_token]
+ * returned from the previous call to the `ListAttestors` method.
*
*
* string page_token = 3;
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponse.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponse.java
index 6c31fe61cfc4..315e1a02bb26 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponse.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponse.java
@@ -158,8 +158,9 @@ public com.google.cloud.binaryauthorization.v1beta1.AttestorOrBuilder getAttesto
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -184,8 +185,9 @@ public java.lang.String getNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -981,8 +983,9 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor.Builder addAttestor
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -1006,8 +1009,9 @@ public java.lang.String getNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -1031,8 +1035,9 @@ public com.google.protobuf.ByteString getNextPageTokenBytes() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -1055,8 +1060,9 @@ public Builder setNextPageToken(java.lang.String value) {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -1075,8 +1081,9 @@ public Builder clearNextPageToken() {
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponseOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponseOrBuilder.java
index a9cfc5196879..2da40db96ffc 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponseOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/ListAttestorsResponseOrBuilder.java
@@ -87,8 +87,9 @@ public interface ListAttestorsResponseOrBuilder
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
@@ -102,8 +103,9 @@ public interface ListAttestorsResponseOrBuilder
*
*
* A token to retrieve the next page of results. Pass this value in the
- * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token] field in the subsequent call to the
- * `ListAttestors` method to retrieve the next page of results.
+ * [ListAttestorsRequest.page_token][google.cloud.binaryauthorization.v1beta1.ListAttestorsRequest.page_token]
+ * field in the subsequent call to the `ListAttestors` method to retrieve the
+ * next page of results.
*
*
* string next_page_token = 2;
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PkixPublicKey.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PkixPublicKey.java
index 17e419270c2c..9b1cf2ef78a5 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PkixPublicKey.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PkixPublicKey.java
@@ -118,7 +118,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_PSS_3072_SHA256 = 2;
*/
- RSA_PSS_3072_SHA256(2, 2),
+ RSA_PSS_3072_SHA256(3, 2),
/**
*
*
@@ -128,7 +128,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_PSS_4096_SHA256 = 3;
*/
- RSA_PSS_4096_SHA256(3, 3),
+ RSA_PSS_4096_SHA256(5, 3),
/**
*
*
@@ -138,7 +138,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_PSS_4096_SHA512 = 4;
*/
- RSA_PSS_4096_SHA512(4, 4),
+ RSA_PSS_4096_SHA512(7, 4),
/**
*
*
@@ -148,7 +148,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_2048_SHA256 = 5;
*/
- RSA_SIGN_PKCS1_2048_SHA256(5, 5),
+ RSA_SIGN_PKCS1_2048_SHA256(9, 5),
/**
*
*
@@ -158,7 +158,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_3072_SHA256 = 6;
*/
- RSA_SIGN_PKCS1_3072_SHA256(6, 6),
+ RSA_SIGN_PKCS1_3072_SHA256(10, 6),
/**
*
*
@@ -168,7 +168,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_4096_SHA256 = 7;
*/
- RSA_SIGN_PKCS1_4096_SHA256(7, 7),
+ RSA_SIGN_PKCS1_4096_SHA256(11, 7),
/**
*
*
@@ -178,7 +178,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* RSA_SIGN_PKCS1_4096_SHA512 = 8;
*/
- RSA_SIGN_PKCS1_4096_SHA512(8, 8),
+ RSA_SIGN_PKCS1_4096_SHA512(12, 8),
/**
*
*
@@ -188,7 +188,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P256_SHA256 = 9;
*/
- ECDSA_P256_SHA256(9, 9),
+ ECDSA_P256_SHA256(13, 9),
/**
*
*
@@ -198,7 +198,7 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P384_SHA384 = 10;
*/
- ECDSA_P384_SHA384(11, 10),
+ ECDSA_P384_SHA384(15, 10),
/**
*
*
@@ -208,7 +208,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*
* ECDSA_P521_SHA512 = 11;
*/
- ECDSA_P521_SHA512(13, 11),
+ ECDSA_P521_SHA512(17, 11),
+ /**
+ *
+ *
+ *
+ * ML-DSA-65 Post-Quantum Cryptography signature algorithm.
+ *
+ *
+ * ML_DSA_65 = 13;
+ */
+ ML_DSA_65(19, 13),
UNRECOGNIZED(-1, -1),
;
@@ -222,6 +232,50 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
"SignatureAlgorithm");
}
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 2048 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_2048_SHA256 = 1;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_2048_SHA256 = RSA_PSS_2048_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 3072 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_3072_SHA256 = 2;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_3072_SHA256 = RSA_PSS_3072_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA256 = 3;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_4096_SHA256 = RSA_PSS_4096_SHA256;
+
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA512 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA512 = 4;
+ */
+ public static final SignatureAlgorithm RSA_SIGN_PSS_4096_SHA512 = RSA_PSS_4096_SHA512;
+
/**
*
*
@@ -277,6 +331,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_2048_SHA256_VALUE = 1;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 2048 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_2048_SHA256 = 1;
+ */
+ public static final int RSA_SIGN_PSS_2048_SHA256_VALUE = 1;
+
/**
*
*
@@ -288,6 +353,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_3072_SHA256_VALUE = 2;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 3072 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_3072_SHA256 = 2;
+ */
+ public static final int RSA_SIGN_PSS_3072_SHA256_VALUE = 2;
+
/**
*
*
@@ -299,6 +375,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_4096_SHA256_VALUE = 3;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA256 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA256 = 3;
+ */
+ public static final int RSA_SIGN_PSS_4096_SHA256_VALUE = 3;
+
/**
*
*
@@ -310,6 +397,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int RSA_PSS_4096_SHA512_VALUE = 4;
+ /**
+ *
+ *
+ *
+ * RSASSA-PSS 4096 bit key with a SHA512 digest.
+ *
+ *
+ * RSA_SIGN_PSS_4096_SHA512 = 4;
+ */
+ public static final int RSA_SIGN_PSS_4096_SHA512_VALUE = 4;
+
/**
*
*
@@ -420,6 +518,17 @@ public enum SignatureAlgorithm implements com.google.protobuf.ProtocolMessageEnu
*/
public static final int EC_SIGN_P521_SHA512_VALUE = 11;
+ /**
+ *
+ *
+ *
+ * ML-DSA-65 Post-Quantum Cryptography signature algorithm.
+ *
+ *
+ * ML_DSA_65 = 13;
+ */
+ public static final int ML_DSA_65_VALUE = 13;
+
public final int getNumber() {
if (index == -1) {
throw new java.lang.IllegalArgumentException(
@@ -468,6 +577,8 @@ public static SignatureAlgorithm forNumber(int value) {
return ECDSA_P384_SHA384;
case 11:
return ECDSA_P521_SHA512;
+ case 13:
+ return ML_DSA_65;
default:
return null;
}
@@ -510,9 +621,13 @@ private static SignatureAlgorithm[] getStaticValuesArray() {
return new SignatureAlgorithm[] {
SIGNATURE_ALGORITHM_UNSPECIFIED,
RSA_PSS_2048_SHA256,
+ RSA_SIGN_PSS_2048_SHA256,
RSA_PSS_3072_SHA256,
+ RSA_SIGN_PSS_3072_SHA256,
RSA_PSS_4096_SHA256,
+ RSA_SIGN_PSS_4096_SHA256,
RSA_PSS_4096_SHA512,
+ RSA_SIGN_PSS_4096_SHA512,
RSA_SIGN_PKCS1_2048_SHA256,
RSA_SIGN_PKCS1_3072_SHA256,
RSA_SIGN_PKCS1_4096_SHA256,
@@ -523,6 +638,7 @@ private static SignatureAlgorithm[] getStaticValuesArray() {
EC_SIGN_P384_SHA384,
ECDSA_P521_SHA512,
EC_SIGN_P521_SHA512,
+ ML_DSA_65,
};
}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Policy.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Policy.java
index 0f099db88731..01c5dd53a967 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Policy.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/Policy.java
@@ -24,7 +24,8 @@
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary Authorization.
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary
+ * Authorization.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.Policy}
@@ -56,6 +57,7 @@ private Policy() {
description_ = "";
globalPolicyEvaluationMode_ = 0;
admissionWhitelistPatterns_ = java.util.Collections.emptyList();
+ etag_ = "";
}
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
@@ -720,7 +722,8 @@ public int getKubernetesNamespaceAdmissionRulesCount() {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -748,7 +751,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -766,7 +770,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -792,7 +797,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -1213,6 +1219,63 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTime_ == null ? com.google.protobuf.Timestamp.getDefaultInstance() : updateTime_;
}
+ public static final int ETAG_FIELD_NUMBER = 11;
+
+ @SuppressWarnings("serial")
+ private volatile java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ @java.lang.Override
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ return (java.lang.String) ref;
+ } else {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ @java.lang.Override
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof java.lang.String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
private byte memoizedIsInitialized = -1;
@java.lang.Override
@@ -1268,6 +1331,9 @@ public void writeTo(com.google.protobuf.CodedOutputStream output) throws java.io
internalGetKubernetesNamespaceAdmissionRules(),
KubernetesNamespaceAdmissionRulesDefaultEntryHolder.defaultEntry,
10);
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ com.google.protobuf.GeneratedMessage.writeString(output, 11, etag_);
+ }
getUnknownFields().writeTo(output);
}
@@ -1359,6 +1425,9 @@ public int getSerializedSize() {
com.google.protobuf.CodedOutputStream.computeMessageSize(
10, kubernetesNamespaceAdmissionRules__);
}
+ if (!com.google.protobuf.GeneratedMessage.isStringEmpty(etag_)) {
+ size += com.google.protobuf.GeneratedMessage.computeStringSize(11, etag_);
+ }
size += getUnknownFields().getSerializedSize();
memoizedSize = size;
return size;
@@ -1396,6 +1465,7 @@ public boolean equals(final java.lang.Object obj) {
if (hasUpdateTime()) {
if (!getUpdateTime().equals(other.getUpdateTime())) return false;
}
+ if (!getEtag().equals(other.getEtag())) return false;
if (!getUnknownFields().equals(other.getUnknownFields())) return false;
return true;
}
@@ -1441,6 +1511,8 @@ public int hashCode() {
hash = (37 * hash) + UPDATE_TIME_FIELD_NUMBER;
hash = (53 * hash) + getUpdateTime().hashCode();
}
+ hash = (37 * hash) + ETAG_FIELD_NUMBER;
+ hash = (53 * hash) + getEtag().hashCode();
hash = (29 * hash) + getUnknownFields().hashCode();
memoizedHashCode = hash;
return hash;
@@ -1546,7 +1618,8 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary Authorization.
+ * A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary
+ * Authorization.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.Policy}
@@ -1650,6 +1723,7 @@ public Builder clear() {
updateTimeBuilder_.dispose();
updateTimeBuilder_ = null;
}
+ etag_ = "";
return this;
}
@@ -1742,6 +1816,9 @@ private void buildPartial0(com.google.cloud.binaryauthorization.v1beta1.Policy r
result.updateTime_ = updateTimeBuilder_ == null ? updateTime_ : updateTimeBuilder_.build();
to_bitField0_ |= 0x00000002;
}
+ if (((from_bitField0_ & 0x00000400) != 0)) {
+ result.etag_ = etag_;
+ }
result.bitField0_ |= to_bitField0_;
}
@@ -1815,6 +1892,11 @@ public Builder mergeFrom(com.google.cloud.binaryauthorization.v1beta1.Policy oth
if (other.hasUpdateTime()) {
mergeUpdateTime(other.getUpdateTime());
}
+ if (!other.getEtag().isEmpty()) {
+ etag_ = other.etag_;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ }
this.mergeUnknownFields(other.getUnknownFields());
onChanged();
return this;
@@ -1957,6 +2039,12 @@ public Builder mergeFrom(
bitField0_ |= 0x00000020;
break;
} // case 82
+ case 90:
+ {
+ etag_ = input.readStringRequireUtf8();
+ bitField0_ |= 0x00000400;
+ break;
+ } // case 90
default:
{
if (!super.parseUnknownField(input, extensionRegistry, tag)) {
@@ -3193,7 +3281,8 @@ public int getKubernetesNamespaceAdmissionRulesCount() {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3222,7 +3311,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3241,7 +3331,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3270,7 +3361,8 @@ public boolean containsKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3303,7 +3395,8 @@ public Builder clearKubernetesNamespaceAdmissionRules() {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3332,7 +3425,8 @@ public Builder removeKubernetesNamespaceAdmissionRules(java.lang.String key) {
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3357,7 +3451,8 @@ public Builder putKubernetesNamespaceAdmissionRules(
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -3384,7 +3479,8 @@ public Builder putAllKubernetesNamespaceAdmissionRules(
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -4452,6 +4548,127 @@ public com.google.protobuf.TimestampOrBuilder getUpdateTimeOrBuilder() {
return updateTimeBuilder_;
}
+ private java.lang.Object etag_ = "";
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ public java.lang.String getEtag() {
+ java.lang.Object ref = etag_;
+ if (!(ref instanceof java.lang.String)) {
+ com.google.protobuf.ByteString bs = (com.google.protobuf.ByteString) ref;
+ java.lang.String s = bs.toStringUtf8();
+ etag_ = s;
+ return s;
+ } else {
+ return (java.lang.String) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ public com.google.protobuf.ByteString getEtagBytes() {
+ java.lang.Object ref = etag_;
+ if (ref instanceof String) {
+ com.google.protobuf.ByteString b =
+ com.google.protobuf.ByteString.copyFromUtf8((java.lang.String) ref);
+ etag_ = b;
+ return b;
+ } else {
+ return (com.google.protobuf.ByteString) ref;
+ }
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtag(java.lang.String value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ etag_ = value;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return This builder for chaining.
+ */
+ public Builder clearEtag() {
+ etag_ = getDefaultInstance().getEtag();
+ bitField0_ = (bitField0_ & ~0x00000400);
+ onChanged();
+ return this;
+ }
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @param value The bytes for etag to set.
+ * @return This builder for chaining.
+ */
+ public Builder setEtagBytes(com.google.protobuf.ByteString value) {
+ if (value == null) {
+ throw new NullPointerException();
+ }
+ checkByteStringIsUtf8(value);
+ etag_ = value;
+ bitField0_ |= 0x00000400;
+ onChanged();
+ return this;
+ }
+
// @@protoc_insertion_point(builder_scope:google.cloud.binaryauthorization.v1beta1.Policy)
}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PolicyOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PolicyOrBuilder.java
index bf1bd5314ade..ba49957833bd 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PolicyOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/PolicyOrBuilder.java
@@ -307,7 +307,8 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -321,7 +322,8 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -340,7 +342,8 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -355,7 +358,8 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -374,7 +378,8 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
*
*
- * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format:
+ * Optional. Per-kubernetes-namespace admission rules. K8s namespace spec
+ * format:
* `[a-z.-]+`, e.g. `some-namespace`
*
*
@@ -650,4 +655,34 @@ com.google.cloud.binaryauthorization.v1beta1.AdmissionRule getClusterAdmissionRu
*
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The etag.
+ */
+ java.lang.String getEtag();
+
+ /**
+ *
+ *
+ *
+ * Optional. A checksum, returned by the server, that can be sent on update
+ * requests to ensure the policy has an up-to-date value before attempting to
+ * update it. See https://google.aip.dev/154.
+ *
+ *
+ * string etag = 11 [(.google.api.field_behavior) = OPTIONAL];
+ *
+ * @return The bytes for etag.
+ */
+ com.google.protobuf.ByteString getEtagBytes();
}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequest.java
index 22b6423f474f..cf8009621c9d 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequest.java
@@ -76,9 +76,12 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -96,9 +99,12 @@ public boolean hasAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -118,9 +124,12 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -484,9 +493,12 @@ public Builder mergeFrom(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -503,9 +515,12 @@ public boolean hasAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -528,9 +543,12 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor getAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -555,9 +573,12 @@ public Builder setAttestor(com.google.cloud.binaryauthorization.v1beta1.Attestor
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -580,9 +601,12 @@ public Builder setAttestor(
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -613,9 +637,12 @@ public Builder mergeAttestor(com.google.cloud.binaryauthorization.v1beta1.Attest
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -637,9 +664,12 @@ public Builder clearAttestor() {
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -656,9 +686,12 @@ public com.google.cloud.binaryauthorization.v1beta1.Attestor.Builder getAttestor
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -679,9 +712,12 @@ public com.google.cloud.binaryauthorization.v1beta1.AttestorOrBuilder getAttesto
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequestOrBuilder.java
index 8c12b15e5676..1bd2451d09d0 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdateAttestorRequestOrBuilder.java
@@ -30,9 +30,12 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -47,9 +50,12 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
@@ -64,9 +70,12 @@ public interface UpdateAttestorRequestOrBuilder
*
*
*
- * Required. The updated [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The service will
- * overwrite the [attestor name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with the resource name
- * in the request URL, in the format `projects/*/attestors/*`.
+ * Required. The updated
+ * [attestor][google.cloud.binaryauthorization.v1beta1.Attestor] value. The
+ * service will overwrite the [attestor
+ * name][google.cloud.binaryauthorization.v1beta1.Attestor.name] field with
+ * the resource name in the request URL, in the format
+ * `projects/*/attestors/*`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequest.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequest.java
index cf7a2b86a38f..cc4bb4157c03 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequest.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequest.java
@@ -76,9 +76,11 @@ public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -96,9 +98,11 @@ public boolean hasPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -118,9 +122,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -479,9 +485,11 @@ public Builder mergeFrom(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -498,9 +506,11 @@ public boolean hasPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -523,9 +533,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy getPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -550,9 +562,11 @@ public Builder setPolicy(com.google.cloud.binaryauthorization.v1beta1.Policy val
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -575,9 +589,11 @@ public Builder setPolicy(
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -608,9 +624,11 @@ public Builder mergePolicy(com.google.cloud.binaryauthorization.v1beta1.Policy v
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -632,9 +650,11 @@ public Builder clearPolicy() {
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -651,9 +671,11 @@ public com.google.cloud.binaryauthorization.v1beta1.Policy.Builder getPolicyBuil
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -674,9 +696,11 @@ public com.google.cloud.binaryauthorization.v1beta1.PolicyOrBuilder getPolicyOrB
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequestOrBuilder.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequestOrBuilder.java
index 09537ff76970..f137595c7c1d 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequestOrBuilder.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UpdatePolicyRequestOrBuilder.java
@@ -30,9 +30,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -47,9 +49,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
@@ -64,9 +68,11 @@ public interface UpdatePolicyRequestOrBuilder
*
*
*
- * Required. A new or updated [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The service will
- * overwrite the [policy name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the resource name in
- * the request URL, in the format `projects/*/policy`.
+ * Required. A new or updated
+ * [policy][google.cloud.binaryauthorization.v1beta1.Policy] value. The
+ * service will overwrite the [policy
+ * name][google.cloud.binaryauthorization.v1beta1.Policy.name] field with the
+ * resource name in the request URL, in the format `projects/*/policy`.
*
*
*
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UserOwnedDrydockNote.java b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UserOwnedDrydockNote.java
index de27af53bf83..02a2f0e6d92c 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UserOwnedDrydockNote.java
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/java/com/google/cloud/binaryauthorization/v1beta1/UserOwnedDrydockNote.java
@@ -24,8 +24,9 @@
*
*
*
- * An [user owned drydock note][google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote] references a Drydock
- * ATTESTATION_AUTHORITY Note created by the user.
+ * An [user owned drydock
+ * note][google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote]
+ * references a Drydock ATTESTATION_AUTHORITY Note created by the user.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote}
@@ -527,8 +528,9 @@ protected Builder newBuilderForType(com.google.protobuf.GeneratedMessage.Builder
*
*
*
- * An [user owned drydock note][google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote] references a Drydock
- * ATTESTATION_AUTHORITY Note created by the user.
+ * An [user owned drydock
+ * note][google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote]
+ * references a Drydock ATTESTATION_AUTHORITY Note created by the user.
*
*
* Protobuf type {@code google.cloud.binaryauthorization.v1beta1.UserOwnedDrydockNote}
diff --git a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/proto/google/cloud/binaryauthorization/v1beta1/resources.proto b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/proto/google/cloud/binaryauthorization/v1beta1/resources.proto
index 02bc0a26c14b..8d716b47a57d 100644
--- a/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/proto/google/cloud/binaryauthorization/v1beta1/resources.proto
+++ b/java-binary-authorization/proto-google-cloud-binary-authorization-v1beta1/src/main/proto/google/cloud/binaryauthorization/v1beta1/resources.proto
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC
+// Copyright 2026 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
@@ -20,7 +20,6 @@ import "google/api/field_behavior.proto";
import "google/api/resource.proto";
import "google/protobuf/timestamp.proto";
-option cc_enable_arenas = true;
option csharp_namespace = "Google.Cloud.BinaryAuthorization.V1Beta1";
option go_package = "cloud.google.com/go/binaryauthorization/apiv1beta1/binaryauthorizationpb;binaryauthorizationpb";
option java_multiple_files = true;
@@ -29,7 +28,10 @@ option java_package = "com.google.cloud.binaryauthorization.v1beta1";
option php_namespace = "Google\\Cloud\\BinaryAuthorization\\V1beta1";
option ruby_package = "Google::Cloud::BinaryAuthorization::V1beta1";
-// A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary Authorization.
+// LINT: LEGACY_NAMES
+
+// A [policy][google.cloud.binaryauthorization.v1beta1.Policy] for Binary
+// Authorization.
message Policy {
option (google.api.resource) = {
type: "binaryauthorization.googleapis.com/Policy"
@@ -59,12 +61,14 @@ message Policy {
// policy for common system-level images. Images not covered by the global
// policy will be subject to the project admission policy. This setting
// has no effect when specified inside a global admission policy.
- GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(google.api.field_behavior) = OPTIONAL];
+ GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7
+ [(google.api.field_behavior) = OPTIONAL];
// Optional. Admission policy allowlisting. A matching admission request will
// always be permitted. This feature is typically used to exclude Google or
// third-party infrastructure images from Binary Authorization policies.
- repeated AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(google.api.field_behavior) = OPTIONAL];
+ repeated AdmissionWhitelistPattern admission_whitelist_patterns = 2
+ [(google.api.field_behavior) = OPTIONAL];
// Optional. Per-cluster admission rules. Cluster spec format:
// `location.clusterId`. There can be at most one admission rule per cluster
@@ -73,33 +77,47 @@ message Policy {
// (e.g. us-central1).
// For `clusterId` syntax restrictions see
// https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.
- map