View Source GoogleApi.CloudAsset.V1.Model.GoogleIdentityAccesscontextmanagerV1EgressFrom (google_api_cloud_asset v0.35.0)
Defines the conditions under which an EgressPolicy matches a request. Conditions based on information about the source of the request. Note that if the destination of the request is also protected by a ServicePerimeter, then that ServicePerimeter must have an IngressPolicy which allows access in order for this request to succeed.
Attributes
-
identities
(type:list(String.t)
, default:nil
) - A list of identities that are allowed access through this [EgressPolicy], in the format ofuser:{email_id}
orserviceAccount:{email_id}
. -
identityType
(type:String.t
, default:nil
) - Specifies the type of identities that are allowed access to outside the perimeter. If left unspecified, then members ofidentities
field will be allowed access. -
sourceRestriction
(type:String.t
, default:nil
) - Whether to enforce traffic restrictions based onsources
field. If thesources
fields is non-empty, then this field must be set toSOURCE_RESTRICTION_ENABLED
. -
sources
(type:list(GoogleApi.CloudAsset.V1.Model.GoogleIdentityAccesscontextmanagerV1EgressSource.t)
, default:nil
) - Sources that this EgressPolicy authorizes access from. If this field is not empty, thensource_restriction
must be set toSOURCE_RESTRICTION_ENABLED
.
Summary
Functions
Unwrap a decoded JSON object into its complex fields.
Types
@type t() :: %GoogleApi.CloudAsset.V1.Model.GoogleIdentityAccesscontextmanagerV1EgressFrom{ identities: [String.t()] | nil, identityType: String.t() | nil, sourceRestriction: String.t() | nil, sources: [ GoogleApi.CloudAsset.V1.Model.GoogleIdentityAccesscontextmanagerV1EgressSource.t() ] | nil }
Functions
Unwrap a decoded JSON object into its complex fields.