Class Resources.Policy (1.17.0) 

publicstaticfinalclass Resources.PolicyextendsGeneratedMessageV3implementsResources.PolicyOrBuilder

A policy for container image binary authorization.

Protobuf type google.cloud.binaryauthorization.v1.Policy

Inherited Members

com.google.protobuf.GeneratedMessageV3.<ListT>makeMutableCopy(ListT)

Static Fields

ADMISSION_WHITELIST_PATTERNS_FIELD_NUMBER

publicstaticfinalintADMISSION_WHITELIST_PATTERNS_FIELD_NUMBER
Field Value
Type Description
int

CLUSTER_ADMISSION_RULES_FIELD_NUMBER

publicstaticfinalintCLUSTER_ADMISSION_RULES_FIELD_NUMBER
Field Value
Type Description
int

DEFAULT_ADMISSION_RULE_FIELD_NUMBER

publicstaticfinalintDEFAULT_ADMISSION_RULE_FIELD_NUMBER
Field Value
Type Description
int

DESCRIPTION_FIELD_NUMBER

publicstaticfinalintDESCRIPTION_FIELD_NUMBER
Field Value
Type Description
int

GLOBAL_POLICY_EVALUATION_MODE_FIELD_NUMBER

publicstaticfinalintGLOBAL_POLICY_EVALUATION_MODE_FIELD_NUMBER
Field Value
Type Description
int

ISTIO_SERVICE_IDENTITY_ADMISSION_RULES_FIELD_NUMBER

publicstaticfinalintISTIO_SERVICE_IDENTITY_ADMISSION_RULES_FIELD_NUMBER
Field Value
Type Description
int

KUBERNETES_NAMESPACE_ADMISSION_RULES_FIELD_NUMBER

publicstaticfinalintKUBERNETES_NAMESPACE_ADMISSION_RULES_FIELD_NUMBER
Field Value
Type Description
int

KUBERNETES_SERVICE_ACCOUNT_ADMISSION_RULES_FIELD_NUMBER

publicstaticfinalintKUBERNETES_SERVICE_ACCOUNT_ADMISSION_RULES_FIELD_NUMBER
Field Value
Type Description
int

NAME_FIELD_NUMBER

publicstaticfinalintNAME_FIELD_NUMBER
Field Value
Type Description
int

UPDATE_TIME_FIELD_NUMBER

publicstaticfinalintUPDATE_TIME_FIELD_NUMBER
Field Value
Type Description
int

Static Methods

getDefaultInstance()

publicstaticResources.PolicygetDefaultInstance()
Returns
Type Description
Resources.Policy

getDescriptor()

publicstaticfinalDescriptors.DescriptorgetDescriptor()
Returns
Type Description
Descriptor

newBuilder()

publicstaticResources.Policy.BuildernewBuilder()
Returns
Type Description
Resources.Policy.Builder

newBuilder(Resources.Policy prototype)

publicstaticResources.Policy.BuildernewBuilder(Resources.Policyprototype)
Parameter
Name Description
prototype Resources.Policy
Returns
Type Description
Resources.Policy.Builder

parseDelimitedFrom(InputStream input)

publicstaticResources.PolicyparseDelimitedFrom(InputStreaminput)
Parameter
Name Description
input InputStream
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseDelimitedFrom(InputStreaminput,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
input InputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseFrom(byte[] data)

publicstaticResources.PolicyparseFrom(byte[]data)
Parameter
Name Description
data byte[]
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseFrom(byte[]data,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
data byte[]
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteString data)

publicstaticResources.PolicyparseFrom(ByteStringdata)
Parameter
Name Description
data ByteString
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseFrom(ByteStringdata,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
data ByteString
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(CodedInputStream input)

publicstaticResources.PolicyparseFrom(CodedInputStreaminput)
Parameter
Name Description
input CodedInputStream
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseFrom(CodedInputStreaminput,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
input CodedInputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseFrom(InputStream input)

publicstaticResources.PolicyparseFrom(InputStreaminput)
Parameter
Name Description
input InputStream
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseFrom(InputStreaminput,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
input InputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
IOException

parseFrom(ByteBuffer data)

publicstaticResources.PolicyparseFrom(ByteBufferdata)
Parameter
Name Description
data ByteBuffer
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)

publicstaticResources.PolicyparseFrom(ByteBufferdata,ExtensionRegistryLiteextensionRegistry)
Parameters
Name Description
data ByteBuffer
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Resources.Policy
Exceptions
Type Description
InvalidProtocolBufferException

parser()

publicstaticParser<Resources.Policy>parser()
Returns
Type Description
Parser<Policy>

Methods

containsClusterAdmissionRules(String key)

publicbooleancontainsClusterAdmissionRules(Stringkey)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsIstioServiceIdentityAdmissionRules(String key)

publicbooleancontainsIstioServiceIdentityAdmissionRules(Stringkey)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsKubernetesNamespaceAdmissionRules(String key)

publicbooleancontainsKubernetesNamespaceAdmissionRules(Stringkey)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

containsKubernetesServiceAccountAdmissionRules(String key)

publicbooleancontainsKubernetesServiceAccountAdmissionRules(Stringkey)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
boolean

equals(Object obj)

publicbooleanequals(Objectobj)
Parameter
Name Description
obj Object
Returns
Type Description
boolean
Overrides

getAdmissionWhitelistPatterns(int index)

publicResources.AdmissionWhitelistPatterngetAdmissionWhitelistPatterns(intindex)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPattern

getAdmissionWhitelistPatternsCount()

publicintgetAdmissionWhitelistPatternsCount()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getAdmissionWhitelistPatternsList()

publicList<Resources.AdmissionWhitelistPattern>getAdmissionWhitelistPatternsList()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
List<AdmissionWhitelistPattern>

getAdmissionWhitelistPatternsOrBuilder(int index)

publicResources.AdmissionWhitelistPatternOrBuildergetAdmissionWhitelistPatternsOrBuilder(intindex)

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
index int
Returns
Type Description
Resources.AdmissionWhitelistPatternOrBuilder

getAdmissionWhitelistPatternsOrBuilderList()

publicList<?extendsResources.AdmissionWhitelistPatternOrBuilder>getAdmissionWhitelistPatternsOrBuilderList()

Optional. Admission policy allowlisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.

repeated .google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern admission_whitelist_patterns = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
List<? extends com.google.protos.google.cloud.binaryauthorization.v1.Resources.AdmissionWhitelistPatternOrBuilder>

getClusterAdmissionRules()

publicMap<String,Resources.AdmissionRule>getClusterAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getClusterAdmissionRulesCount()

publicintgetClusterAdmissionRulesCount()

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getClusterAdmissionRulesMap()

publicMap<String,Resources.AdmissionRule>getClusterAdmissionRulesMap()

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getClusterAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

publicResources.AdmissionRulegetClusterAdmissionRulesOrDefault(Stringkey,Resources.AdmissionRuledefaultValue)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getClusterAdmissionRulesOrThrow(String key)

publicResources.AdmissionRulegetClusterAdmissionRulesOrThrow(Stringkey)

Optional. Per-cluster admission rules. Cluster spec format: location.clusterId. There can be at most one admission rule per cluster spec. A location is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For clusterId syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> cluster_admission_rules = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getDefaultAdmissionRule()

publicResources.AdmissionRulegetDefaultAdmissionRule()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.AdmissionRule

The defaultAdmissionRule.

getDefaultAdmissionRuleOrBuilder()

publicResources.AdmissionRuleOrBuildergetDefaultAdmissionRuleOrBuilder()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
Resources.AdmissionRuleOrBuilder

getDefaultInstanceForType()

publicResources.PolicygetDefaultInstanceForType()
Returns
Type Description
Resources.Policy

getDescription()

publicStringgetDescription()

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
String

The description.

getDescriptionBytes()

publicByteStringgetDescriptionBytes()

Optional. A descriptive comment.

string description = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
ByteString

The bytes for description.

getGlobalPolicyEvaluationMode()

publicResources.Policy.GlobalPolicyEvaluationModegetGlobalPolicyEvaluationMode()

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Resources.Policy.GlobalPolicyEvaluationMode

The globalPolicyEvaluationMode.

getGlobalPolicyEvaluationModeValue()

publicintgetGlobalPolicyEvaluationModeValue()

Optional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.

.google.cloud.binaryauthorization.v1.Policy.GlobalPolicyEvaluationMode global_policy_evaluation_mode = 7 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

The enum numeric value on the wire for globalPolicyEvaluationMode.

getIstioServiceIdentityAdmissionRules()

publicMap<String,Resources.AdmissionRule>getIstioServiceIdentityAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getIstioServiceIdentityAdmissionRulesCount()

publicintgetIstioServiceIdentityAdmissionRulesCount()

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getIstioServiceIdentityAdmissionRulesMap()

publicMap<String,Resources.AdmissionRule>getIstioServiceIdentityAdmissionRulesMap()

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getIstioServiceIdentityAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

publicResources.AdmissionRulegetIstioServiceIdentityAdmissionRulesOrDefault(Stringkey,Resources.AdmissionRuledefaultValue)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getIstioServiceIdentityAdmissionRulesOrThrow(String key)

publicResources.AdmissionRulegetIstioServiceIdentityAdmissionRulesOrThrow(Stringkey)

Optional. Per-istio-service-identity admission rules. Istio service identity spec format: spiffe://<domain>/ns/<namespace>/sa/<serviceaccount> or <domain>/ns/<namespace>/sa/<serviceaccount> e.g. spiffe://example.com/ns/test-ns/sa/default

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> istio_service_identity_admission_rules = 9 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getKubernetesNamespaceAdmissionRules()

publicMap<String,Resources.AdmissionRule>getKubernetesNamespaceAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getKubernetesNamespaceAdmissionRulesCount()

publicintgetKubernetesNamespaceAdmissionRulesCount()

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getKubernetesNamespaceAdmissionRulesMap()

publicMap<String,Resources.AdmissionRule>getKubernetesNamespaceAdmissionRulesMap()

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getKubernetesNamespaceAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

publicResources.AdmissionRulegetKubernetesNamespaceAdmissionRulesOrDefault(Stringkey,Resources.AdmissionRuledefaultValue)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getKubernetesNamespaceAdmissionRulesOrThrow(String key)

publicResources.AdmissionRulegetKubernetesNamespaceAdmissionRulesOrThrow(Stringkey)

Optional. Per-kubernetes-namespace admission rules. K8s namespace spec format: [a-z.-]+, e.g. 'some-namespace'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_namespace_admission_rules = 10 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getKubernetesServiceAccountAdmissionRules()

publicMap<String,Resources.AdmissionRule>getKubernetesServiceAccountAdmissionRules()
Returns
Type Description
Map<String,AdmissionRule>

getKubernetesServiceAccountAdmissionRulesCount()

publicintgetKubernetesServiceAccountAdmissionRulesCount()

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
int

getKubernetesServiceAccountAdmissionRulesMap()

publicMap<String,Resources.AdmissionRule>getKubernetesServiceAccountAdmissionRulesMap()

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Returns
Type Description
Map<String,AdmissionRule>

getKubernetesServiceAccountAdmissionRulesOrDefault(String key, Resources.AdmissionRule defaultValue)

publicResources.AdmissionRulegetKubernetesServiceAccountAdmissionRulesOrDefault(Stringkey,Resources.AdmissionRuledefaultValue)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameters
Name Description
key String
defaultValue Resources.AdmissionRule
Returns
Type Description
Resources.AdmissionRule

getKubernetesServiceAccountAdmissionRulesOrThrow(String key)

publicResources.AdmissionRulegetKubernetesServiceAccountAdmissionRulesOrThrow(Stringkey)

Optional. Per-kubernetes-service-account admission rules. Service account spec format: namespace:serviceaccount. e.g. 'test-ns:default'

map<string, .google.cloud.binaryauthorization.v1.AdmissionRule> kubernetes_service_account_admission_rules = 8 [(.google.api.field_behavior) = OPTIONAL];

Parameter
Name Description
key String
Returns
Type Description
Resources.AdmissionRule

getName()

publicStringgetName()

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
String

The name.

getNameBytes()

publicByteStringgetNameBytes()

Output only. The resource name, in the format projects/*/policy. There is at most one policy per project.

string name = 1 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
ByteString

The bytes for name.

getParserForType()

publicParser<Resources.Policy>getParserForType()
Returns
Type Description
Parser<Policy>
Overrides

getSerializedSize()

publicintgetSerializedSize()
Returns
Type Description
int
Overrides

getUnknownFields()

publicfinalUnknownFieldSetgetUnknownFields()
Returns
Type Description
UnknownFieldSet
Overrides

getUpdateTime()

publicTimestampgetUpdateTime()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Timestamp

The updateTime.

getUpdateTimeOrBuilder()

publicTimestampOrBuildergetUpdateTimeOrBuilder()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
TimestampOrBuilder

hasDefaultAdmissionRule()

publicbooleanhasDefaultAdmissionRule()

Required. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.

.google.cloud.binaryauthorization.v1.AdmissionRule default_admission_rule = 4 [(.google.api.field_behavior) = REQUIRED];

Returns
Type Description
boolean

Whether the defaultAdmissionRule field is set.

hasUpdateTime()

publicbooleanhasUpdateTime()

Output only. Time when the policy was last updated.

.google.protobuf.Timestamp update_time = 5 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
boolean

Whether the updateTime field is set.

hashCode()

publicinthashCode()
Returns
Type Description
int
Overrides

internalGetFieldAccessorTable()

protectedGeneratedMessageV3.FieldAccessorTableinternalGetFieldAccessorTable()
Returns
Type Description
FieldAccessorTable
Overrides

internalGetMapField(int number)

protectedMapFieldinternalGetMapField(intnumber)
Parameter
Name Description
number int
Returns
Type Description
MapField
Overrides

isInitialized()

publicfinalbooleanisInitialized()
Returns
Type Description
boolean
Overrides

newBuilderForType()

publicResources.Policy.BuildernewBuilderForType()
Returns
Type Description
Resources.Policy.Builder

newBuilderForType(GeneratedMessageV3.BuilderParent parent)

protectedResources.Policy.BuildernewBuilderForType(GeneratedMessageV3.BuilderParentparent)
Parameter
Name Description
parent BuilderParent
Returns
Type Description
Resources.Policy.Builder
Overrides

newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)

protectedObjectnewInstance(GeneratedMessageV3.UnusedPrivateParameterunused)
Parameter
Name Description
unused UnusedPrivateParameter
Returns
Type Description
Object
Overrides

toBuilder()

publicResources.Policy.BuildertoBuilder()
Returns
Type Description
Resources.Policy.Builder

writeTo(CodedOutputStream output)

publicvoidwriteTo(CodedOutputStreamoutput)
Parameter
Name Description
output CodedOutputStream
Overrides
Exceptions
Type Description
IOException

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025年11月19日 UTC.