cloudkms_v1.yaml 3.7 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596
  1. type: google.api.Service
  2. config_version: 3
  3. name: cloudkms.googleapis.com
  4. title: Cloud Key Management Service (KMS) API
  5. apis:
  6. - name: google.cloud.kms.v1.KeyManagementService
  7. - name: google.iam.v1.IAMPolicy
  8. types:
  9. - name: google.cloud.kms.v1.LocationMetadata
  10. documentation:
  11. summary: |-
  12. Manages keys and performs cryptographic operations in a central cloud
  13. service, for direct use by other cloud resources and applications.
  14. rules:
  15. - selector: google.cloud.location.Locations.GetLocation
  16. description: Gets information about a location.
  17. - selector: google.cloud.location.Locations.ListLocations
  18. description: Lists information about the supported locations for this service.
  19. - selector: google.iam.v1.IAMPolicy.GetIamPolicy
  20. description: |-
  21. Gets the access control policy for a resource. Returns an empty policy
  22. if the resource exists and does not have a policy set.
  23. - selector: google.iam.v1.IAMPolicy.SetIamPolicy
  24. description: |-
  25. Sets the access control policy on the specified resource. Replaces
  26. any existing policy.
  27. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED`
  28. errors.
  29. - selector: google.iam.v1.IAMPolicy.TestIamPermissions
  30. description: |-
  31. Returns permissions that a caller has on the specified resource. If the
  32. resource does not exist, this will return an empty set of
  33. permissions, not a `NOT_FOUND` error.
  34. Note: This operation is designed to be used for building
  35. permission-aware UIs and command-line tools, not for authorization
  36. checking. This operation may "fail open" without warning.
  37. http:
  38. rules:
  39. - selector: google.cloud.location.Locations.GetLocation
  40. get: '/v1/{name=projects/*/locations/*}'
  41. - selector: google.cloud.location.Locations.ListLocations
  42. get: '/v1/{name=projects/*}/locations'
  43. - selector: google.iam.v1.IAMPolicy.GetIamPolicy
  44. get: '/v1/{resource=projects/*/locations/*/keyRings/*}:getIamPolicy'
  45. additional_bindings:
  46. - get: '/v1/{resource=projects/*/locations/*/keyRings/*/cryptoKeys/*}:getIamPolicy'
  47. - get: '/v1/{resource=projects/*/locations/*/keyRings/*/importJobs/*}:getIamPolicy'
  48. - selector: google.iam.v1.IAMPolicy.SetIamPolicy
  49. post: '/v1/{resource=projects/*/locations/*/keyRings/*}:setIamPolicy'
  50. body: '*'
  51. additional_bindings:
  52. - post: '/v1/{resource=projects/*/locations/*/keyRings/*/cryptoKeys/*}:setIamPolicy'
  53. body: '*'
  54. - post: '/v1/{resource=projects/*/locations/*/keyRings/*/importJobs/*}:setIamPolicy'
  55. body: '*'
  56. - selector: google.iam.v1.IAMPolicy.TestIamPermissions
  57. post: '/v1/{resource=projects/*/locations/*/keyRings/*}:testIamPermissions'
  58. body: '*'
  59. additional_bindings:
  60. - post: '/v1/{resource=projects/*/locations/*/keyRings/*/cryptoKeys/*}:testIamPermissions'
  61. body: '*'
  62. - post: '/v1/{resource=projects/*/locations/*/keyRings/*/importJobs/*}:testIamPermissions'
  63. body: '*'
  64. authentication:
  65. rules:
  66. - selector: 'google.cloud.kms.v1.KeyManagementService.*'
  67. oauth:
  68. canonical_scopes: |-
  69. https://www.googleapis.com/auth/cloud-platform,
  70. https://www.googleapis.com/auth/cloudkms
  71. - selector: google.cloud.location.Locations.GetLocation
  72. oauth:
  73. canonical_scopes: |-
  74. https://www.googleapis.com/auth/cloud-platform,
  75. https://www.googleapis.com/auth/cloudkms
  76. - selector: google.cloud.location.Locations.ListLocations
  77. oauth:
  78. canonical_scopes: |-
  79. https://www.googleapis.com/auth/cloud-platform,
  80. https://www.googleapis.com/auth/cloudkms
  81. - selector: 'google.iam.v1.IAMPolicy.*'
  82. oauth:
  83. canonical_scopes: |-
  84. https://www.googleapis.com/auth/cloud-platform,
  85. https://www.googleapis.com/auth/cloudkms