Package com.google.cloud.audit
Interface AuthenticationInfoOrBuilder
- All Superinterfaces:
com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
- All Known Implementing Classes:
AuthenticationInfo
,AuthenticationInfo.Builder
public interface AuthenticationInfoOrBuilder
extends com.google.protobuf.MessageOrBuilder
-
Method Summary
Modifier and TypeMethodDescriptionThe authority selector specified by the requestor, if any.com.google.protobuf.ByteString
The authority selector specified by the requestor, if any.The email address of the authenticated user (or service account on behalf of third party principal) making the request.com.google.protobuf.ByteString
The email address of the authenticated user (or service account on behalf of third party principal) making the request.String representation of identity of requesting party.com.google.protobuf.ByteString
String representation of identity of requesting party.getServiceAccountDelegationInfo
(int index) Identity delegation history of an authenticated service account that makes the request.int
Identity delegation history of an authenticated service account that makes the request.Identity delegation history of an authenticated service account that makes the request.getServiceAccountDelegationInfoOrBuilder
(int index) Identity delegation history of an authenticated service account that makes the request.List<? extends ServiceAccountDelegationInfoOrBuilder>
Identity delegation history of an authenticated service account that makes the request.The name of the service account key used to create or exchange credentials for authenticating the service account making the request.com.google.protobuf.ByteString
The name of the service account key used to create or exchange credentials for authenticating the service account making the request.com.google.protobuf.Struct
The third party identification (if any) of the authenticated user making the request.com.google.protobuf.StructOrBuilder
The third party identification (if any) of the authenticated user making the request.boolean
The third party identification (if any) of the authenticated user making the request.Methods inherited from interface com.google.protobuf.MessageLiteOrBuilder
isInitialized
Methods inherited from interface com.google.protobuf.MessageOrBuilder
findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof
-
Method Details
-
getPrincipalEmail
String getPrincipalEmail()The email address of the authenticated user (or service account on behalf of third party principal) making the request. For third party identity callers, the `principal_subject` field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see [Caller identities in audit logs](https://cloud.google.com/logging/docs/audit#user-id).
string principal_email = 1;
- Returns:
- The principalEmail.
-
getPrincipalEmailBytes
com.google.protobuf.ByteString getPrincipalEmailBytes()The email address of the authenticated user (or service account on behalf of third party principal) making the request. For third party identity callers, the `principal_subject` field is populated instead of this field. For privacy reasons, the principal email address is sometimes redacted. For more information, see [Caller identities in audit logs](https://cloud.google.com/logging/docs/audit#user-id).
string principal_email = 1;
- Returns:
- The bytes for principalEmail.
-
getAuthoritySelector
String getAuthoritySelector()The authority selector specified by the requestor, if any. It is not guaranteed that the principal was allowed to use this authority.
string authority_selector = 2;
- Returns:
- The authoritySelector.
-
getAuthoritySelectorBytes
com.google.protobuf.ByteString getAuthoritySelectorBytes()The authority selector specified by the requestor, if any. It is not guaranteed that the principal was allowed to use this authority.
string authority_selector = 2;
- Returns:
- The bytes for authoritySelector.
-
hasThirdPartyPrincipal
boolean hasThirdPartyPrincipal()The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the `@type` property.
.google.protobuf.Struct third_party_principal = 4;
- Returns:
- Whether the thirdPartyPrincipal field is set.
-
getThirdPartyPrincipal
com.google.protobuf.Struct getThirdPartyPrincipal()The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the `@type` property.
.google.protobuf.Struct third_party_principal = 4;
- Returns:
- The thirdPartyPrincipal.
-
getThirdPartyPrincipalOrBuilder
com.google.protobuf.StructOrBuilder getThirdPartyPrincipalOrBuilder()The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the `@type` property.
.google.protobuf.Struct third_party_principal = 4;
-
getServiceAccountKeyName
String getServiceAccountKeyName()The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 5;
- Returns:
- The serviceAccountKeyName.
-
getServiceAccountKeyNameBytes
com.google.protobuf.ByteString getServiceAccountKeyNameBytes()The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
string service_account_key_name = 5;
- Returns:
- The bytes for serviceAccountKeyName.
-
getServiceAccountDelegationInfoList
List<ServiceAccountDelegationInfo> getServiceAccountDelegationInfoList()Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.audit.ServiceAccountDelegationInfo service_account_delegation_info = 6;
-
getServiceAccountDelegationInfo
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.audit.ServiceAccountDelegationInfo service_account_delegation_info = 6;
-
getServiceAccountDelegationInfoCount
int getServiceAccountDelegationInfoCount()Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.audit.ServiceAccountDelegationInfo service_account_delegation_info = 6;
-
getServiceAccountDelegationInfoOrBuilderList
List<? extends ServiceAccountDelegationInfoOrBuilder> getServiceAccountDelegationInfoOrBuilderList()Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.audit.ServiceAccountDelegationInfo service_account_delegation_info = 6;
-
getServiceAccountDelegationInfoOrBuilder
Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events.
repeated .google.cloud.audit.ServiceAccountDelegationInfo service_account_delegation_info = 6;
-
getPrincipalSubject
String getPrincipalSubject()String representation of identity of requesting party. Populated for both first and third party identities.
string principal_subject = 8;
- Returns:
- The principalSubject.
-
getPrincipalSubjectBytes
com.google.protobuf.ByteString getPrincipalSubjectBytes()String representation of identity of requesting party. Populated for both first and third party identities.
string principal_subject = 8;
- Returns:
- The bytes for principalSubject.
-