!kX(      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~                          !"#$%&'(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None27_Bgogol-binaryauthorizationV1 error format.gogol-binaryauthorization1 v1 error formatgogol-binaryauthorization2 v2 error formatgogol-binaryauthorization4Required. How this admission rule will be evaluated.gogol-binaryauthorizationEVALUATION_MODE_UNSPECIFIED Do not use.gogol-binaryauthorization ALWAYS_ALLOW) This rule allows all all pod creations.gogol-binaryauthorizationREQUIRE_ATTESTATION This rule allows a pod creation if all the attestors listed in 'require_attestations_by' have valid attestations for all of the images in the pod spec.gogol-binaryauthorization ALWAYS_DENY% This rule denies all pod creations.gogol-binaryauthorizationThe signature algorithm used to verify a message against a signature using this key. These signature algorithm must match the structure and any object identifiers encoded in `public_key_pem` (i.e. this algorithm must match that of the public key). gogol-binaryauthorizationSIGNATURE_ALGORITHM_UNSPECIFIED Not specified. gogol-binaryauthorizationRSA_PSS_2048_SHA256/ RSASSA-PSS 2048 bit key with a SHA256 digest. gogol-binaryauthorizationRSA_PSS_3072_SHA256/ RSASSA-PSS 3072 bit key with a SHA256 digest. gogol-binaryauthorizationRSA_PSS_4096_SHA256/ RSASSA-PSS 4096 bit key with a SHA256 digest. gogol-binaryauthorizationRSA_PSS_4096_SHA512/ RSASSA-PSS 4096 bit key with a SHA512 digest.gogol-binaryauthorizationRSA_SIGN_PKCS1_2048_SHA256< RSASSA-PKCS1-v1_5 with a 2048 bit key and a SHA256 digest.gogol-binaryauthorizationRSA_SIGN_PKCS1_3072_SHA256< RSASSA-PKCS1-v1_5 with a 3072 bit key and a SHA256 digest.gogol-binaryauthorizationRSA_SIGN_PKCS1_4096_SHA256< RSASSA-PKCS1-v1_5 with a 4096 bit key and a SHA256 digest.gogol-binaryauthorizationRSA_SIGN_PKCS1_4096_SHA512< RSASSA-PKCS1-v1_5 with a 4096 bit key and a SHA512 digest.gogol-binaryauthorizationECDSA_P256_SHA2565 ECDSA on the NIST P-256 curve with a SHA256 digest.gogol-binaryauthorizationECDSA_P384_SHA3845 ECDSA on the NIST P-384 curve with a SHA384 digest.gogol-binaryauthorizationECDSA_P521_SHA5125 ECDSA on the NIST P-521 curve with a SHA512 digest.gogol-binaryauthorizationOptional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.gogol-binaryauthorization)GLOBAL_POLICY_EVALUATION_MODE_UNSPECIFIED$ Not specified: DISABLE is assumed.gogol-binaryauthorizationENABLE# Enables global policy evaluation.gogol-binaryauthorizationDISABLE$ Disables global policy evaluation.gogol-binaryauthorizationJRequired. The action when a pod creation is denied by the admission rule.gogol-binaryauthorizationENFORCEMENT_MODE_UNSPECIFIED Do not use.gogol-binaryauthorizationENFORCED_BLOCK_AND_AUDIT_LOG: Enforce the admission rule by blocking the pod creation.gogol-binaryauthorizationDRYRUN_AUDIT_LOG_ONLY{ Dryrun mode: Audit logging only. This will allow the pod creation as if the admission request had specified break-glass. (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None"#27AGgogol-binaryauthorization#Associates `members` with a `role`.See: a smart constructor.gogol-binaryauthorizationwAn attestor that attests to container image artifacts. An existing attestor cannot be modified except where indicated.See: \ smart constructor.gogol-binaryauthorizationhOptional. Per-cluster admission rules. Cluster spec format: `location.clusterId`. There can be at most one admission rule per cluster spec. A `location` is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For `clusterId` syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.See: Z smart constructor. gogol-binaryauthorization2A policy for container image binary authorization.See: R smart constructor.!gogol-binaryauthorization1Response message for `TestIamPermissions` method.See: P smart constructor."gogol-binaryauthorizationYAn attestor public key that will be used to verify attestations signed by this attestor.See: K smart constructor.#gogol-binaryauthorizationDefines an Identity and Access Management (IAM) policy. It is used to specify access control policies for Cloud Platform resources. A `Policy` consists of a list of `bindings`. A `binding` binds a list of `members` to a `role`, where the members can be user accounts, Google groups, Google domains, and service accounts. A `role` is a named list of permissions defined by IAM. **JSON Example** { "bindings": [ { "role": "roles/owner", "members": [ "user:mike'example.com", "group:admins'example.com", "domain:google.com", "serviceAccount:my-other-app'appspot.gserviceaccount.com" ] }, { "role": "roles/viewer", "members": ["user:sean'example.com"] } ] } **YAML Example** bindings: - members: - user:mike'example.com - group:admins'example.com - domain:google.com - serviceAccount:my-other-app'appspot.gserviceaccount.com role: roles/owner - members: - user:sean'example.com role: roles/viewer For a description of IAM and its features, see the  !https://cloud.google.com/iam/docsIAM developer's guide.See: G smart constructor.$gogol-binaryauthorization0Request message for `TestIamPermissions` method.See: E smart constructor.%gogol-binaryauthorizationUAn admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied. Images matching an admission whitelist pattern are exempted from admission rules and will never block a pod creation.See: A smart constructor.&gogol-binaryauthorizationNAn admission whitelist pattern exempts images from checks by admission rules.See: ? smart constructor.'gogol-binaryauthorization=Response message for BinauthzManagementService.ListAttestors.See: < smart constructor.(gogol-binaryauthorization*Request message for `SetIamPolicy` method.See: : smart constructor.)gogol-binaryauthorization[A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); } The JSON representation for `Empty` is empty JSON object `{}`.See: 9 smart constructor.*gogol-binaryauthorization`An user owned drydock note references a Drydock ATTESTATION_AUTHORITY Note created by the user.See: 5 smart constructor.+gogol-binaryauthorizationRepresents an expression text. Example: title: "User account presence" description: "Determines whether the request has a user account" expression: "size(request.user) > 0"See: 0 smart constructor.,gogol-binaryauthorizationA public key in the PkixPublicKey format (see https://tools.ietf.org/html/rfc5280#section-4.1.2.7 for details). Public keys of this type are typically textually encoded using the PEM format.See: - smart constructor.-gogol-binaryauthorizationCreates a value of ,4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:./.gogol-binaryauthorizationYA PEM-encoded public key, as described in https://tools.ietf.org/html/rfc7468#section-13/gogol-binaryauthorizationThe signature algorithm used to verify a message against a signature using this key. These signature algorithm must match the structure and any object identifiers encoded in `public_key_pem` (i.e. this algorithm must match that of the public key).0gogol-binaryauthorizationCreates a value of +4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:12341gogol-binaryauthorizationAn optional string indicating the location of the expression for error reporting, e.g. a file name and a position in the file.2gogol-binaryauthorizationTextual representation of an expression in Common Expression Language syntax. The application context of the containing message determines which well-known feature set of CEL is supported.3gogol-binaryauthorizationAn optional title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.4gogol-binaryauthorizationAn optional description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.5gogol-binaryauthorizationCreates a value of *4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:6786gogol-binaryauthorization3Output only. This field will contain the service account email address that this Attestor will use as the principal when querying Container Analysis. Attestor administrators must grant this service account the IAM role needed to read attestations from the note_reference in Container Analysis (`containeranalysis.notes.occurrences.viewer`). This email address is fixed for the lifetime of the Attestor, but callers should not make any other assumptions about the service account email; future versions may use an email based on a different naming pattern.7gogol-binaryauthorizationhOptional. Public keys that verify attestations signed by this attestor. This field may be updated. If this field is non-empty, one of the specified public keys must verify that an attestation was signed by this attestor for the image specified in the admission request. If this field is empty, this attestor always returns that no valid attestations exist.8gogol-binaryauthorization}Required. The Drydock resource name of a ATTESTATION_AUTHORITY Note, created by the user, in the format: `projects/*/notes/*` (or the legacy `providers/*/notes/*`). This field may not be updated. An attestation by this attestor is stored as a Drydock ATTESTATION_AUTHORITY Occurrence that names a container image and that links to this Note. Drydock is an external dependency.9gogol-binaryauthorizationCreates a value of )4 with the minimum fields required to make a request.:gogol-binaryauthorizationCreates a value of (4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:;;gogol-binaryauthorizationREQUIRED: The complete policy to be applied to the `resource`. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Cloud Platform services (such as Projects) might reject them.<gogol-binaryauthorizationCreates a value of '4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:=>=gogol-binaryauthorizationA token to retrieve the next page of results. Pass this value in the ListAttestorsRequest.page_token field in the subsequent call to the `ListAttestors` method to retrieve the next page of results.>gogol-binaryauthorizationThe list of attestors.?gogol-binaryauthorizationCreates a value of &4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:@@gogol-binaryauthorizationAn image name pattern to whitelist, in the form `registry/path/to/image`. This supports a trailing `*` as a wildcard, but this is allowed only in text after the `registry/` part.Agogol-binaryauthorizationCreates a value of %4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:BCDBgogol-binaryauthorizationJRequired. The action when a pod creation is denied by the admission rule.Cgogol-binaryauthorization4Required. How this admission rule will be evaluated.Dgogol-binaryauthorizationOptional. The resource names of the attestors that must attest to a container image, in the format `projects/*/attestors/*`. Each attestor must exist before a policy can reference it. To add an attestor to a policy the principal issuing the policy change request must be able to read the attestor resource. Note: this field must be non-empty when the evaluation_mode field specifies REQUIRE_ATTESTATION, otherwise it must be empty.Egogol-binaryauthorizationCreates a value of $4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:FFgogol-binaryauthorizationThe set of permissions to check for the `resource`. Permissions with wildcards (such as '*' or 'storage.*') are not allowed. For more information see  6https://cloud.google.com/iam/docs/overview#permissions IAM Overview.Ggogol-binaryauthorizationCreates a value of #4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:HIJHgogol-binaryauthorizatione`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. If no `etag` is provided in the call to `setIamPolicy`, then the existing policy is overwritten blindly.Igogol-binaryauthorization Deprecated.Jgogol-binaryauthorization`Associates a list of `members` to a `role`. `bindings` with no members will result in an error.Kgogol-binaryauthorizationCreates a value of "4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:LMNOLgogol-binaryauthorization#A raw PKIX SubjectPublicKeyInfo format public key. NOTE: `id` may be explicitly provided by the caller when using this type of public key, but it MUST be a valid RFC3986 URI. If `id` is left blank, a default one will be computed based on the digest of the DER encoding of the public key.Mgogol-binaryauthorizationASCII-armored representation of a PGP public key, as the entire output by the command `gpg --export --armor foo'example.com` (either LF or CRLF line endings). When using this field, `id` should be left blank. The BinAuthz API handlers will calculate the ID and fill it in automatically. BinAuthz computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as upper-case hex. If `id` is provided by the caller, it will be overwritten by the API-calculated ID.Ngogol-binaryauthorizationeThe ID of this public key. Signatures verified by BinAuthz must include the ID of the public key that can be used to verify them, and that ID must match the contents of this field exactly. Additional restrictions on this field can be imposed based on which public key type is encapsulated. See the documentation on `public_key` cases below for details.Ogogol-binaryauthorization;Optional. A descriptive comment. This field may be updated.Pgogol-binaryauthorizationCreates a value of !4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:QQgogol-binaryauthorizationMA subset of `TestPermissionsRequest.permissions` that the caller is allowed.Rgogol-binaryauthorizationCreates a value of  4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:STUVWXYSgogol-binaryauthorizationRequired. Default admission rule for a cluster without a per-cluster, per- kubernetes-service-account, or per-istio-service-identity admission rule.Tgogol-binaryauthorizationOptional. Admission policy whitelisting. A matching admission request will always be permitted. This feature is typically used to exclude Google or third-party infrastructure images from Binary Authorization policies.Ugogol-binaryauthorizationhOptional. Per-cluster admission rules. Cluster spec format: `location.clusterId`. There can be at most one admission rule per cluster spec. A `location` is either a compute zone (e.g. us-central1-a) or a region (e.g. us-central1). For `clusterId` syntax restrictions see https://cloud.google.com/container-engine/reference/rest/v1/projects.zones.clusters.Vgogol-binaryauthorization3Output only. Time when the policy was last updated.Wgogol-binaryauthorizationlOutput only. The resource name, in the format `projects/*/policy`. There is at most one policy per project.Xgogol-binaryauthorizationOptional. Controls the evaluation of a Google-maintained global admission policy for common system-level images. Images not covered by the global policy will be subject to the project admission policy. This setting has no effect when specified inside a global admission policy.Ygogol-binaryauthorization Optional. A descriptive comment.Zgogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:[\gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:]^_`]gogol-binaryauthorization:A Drydock ATTESTATION_AUTHORITY Note, created by the user.^gogol-binaryauthorization5Output only. Time when the attestor was last updated._gogol-binaryauthorizationeRequired. The resource name, in the format: `projects/*/attestors/*`. This field may not be updated.`gogol-binaryauthorizationkOptional. A descriptive comment. This field may be updated. The field may be displayed in chooser dialogs.agogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:bcdbgogol-binaryauthorizationlSpecifies the identities requesting access for a Cloud Platform resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice'gmail.com` . * `serviceAccount:{emailid}`: An email address that represents a service account. For example, `my-other-app'appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins'example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`.cgogol-binaryauthorizationcRole that is assigned to `members`. For example, `roles/viewer`, `roles/editor`, or `roles/owner`.dgogol-binaryauthorizationThe condition that is associated with this binding. NOTE: An unsatisfied condition will not allow user access via current binding. Different bindings, including their conditions, are examined independently.Zgogol-binaryauthorization[()*+,-./012 3456789:!;<"=>?@A#BCDE$FG%HIJK&LM'NOP(QR)S*TUVW+XYZ[\,]^_-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcd(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None.27Jegogol-binaryauthorization%Default request referring to version v1beta1 of the Binary Authorization API. This contains the host and root path used as a starting point for constructing service requests.fgogol-binaryauthorization?View and manage your data across Google Cloud Platform servicesg  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgef,-./+01234*5678)9(:;'<=>&?@ %ABCD$EF#GHIJ"KLMNO!PQ RSTUVWXYZ[\]^_`abcd(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVa ggogol-binaryauthorizationCreates an attestor, and returns a copy of the new attestor. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed, ALREADY_EXISTS if the attestor already exists.See: i smart constructor.hgogol-binaryauthorizationA resource alias for -binaryauthorization.projects.attestors.create method which the g request conforms to.igogol-binaryauthorizationCreates a value of g4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:jklmnopqjgogol-binaryauthorization&Required. The parent of this attestor.kgogol-binaryauthorizationV1 error format.lgogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").mgogol-binaryauthorizationOAuth access token.ngogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").ogogol-binaryauthorizationMultipart request metadata.pgogol-binaryauthorizationRequired. The attestors ID.qgogol-binaryauthorizationJSONPigogol-binaryauthorizationjgogol-binaryauthorizationo ghijklmnopq higjklmnopq(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVr wgogol-binaryauthorizationFDeletes an attestor. Returns NOT_FOUND if the attestor does not exist.See: y smart constructor.xgogol-binaryauthorizationA resource alias for -binaryauthorization.projects.attestors.delete method which the w request conforms to.ygogol-binaryauthorizationCreates a value of w4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:z{|}~zgogol-binaryauthorizationV1 error format.{gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").|gogol-binaryauthorizationOAuth access token.}gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").~gogol-binaryauthorizationWRequired. The name of the attestors to delete, in the format `projects/*/attestors/*`.gogol-binaryauthorizationJSONPygogol-binaryauthorization~ wxyz{|}~ xywz{|}~(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVn gogol-binaryauthorizationCGets an attestor. Returns NOT_FOUND if the attestor does not exist.See:  smart constructor.gogol-binaryauthorizationA resource alias for *binaryauthorization.projects.attestors.get method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationXRequired. The name of the attestor to retrieve, in the format `projects/*/attestors/*`.gogol-binaryauthorizationJSONPgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV gogol-binaryauthorization~Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.See:  smart constructor.gogol-binaryauthorizationA resource alias for 3binaryauthorization.projects.attestors.getIamPolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationREQUIRED: The resource for which the policy is being requested. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONPgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV gogol-binaryauthorizationHLists attestors. Returns INVALID_ARGUMENT if the project does not exist.See:  smart constructor.gogol-binaryauthorizationA resource alias for +binaryauthorization.projects.attestors.list method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationfRequired. The resource name of the project associated with the attestors, in the format `projects/*`.gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationA token identifying a page of results the server should return. Typically, this is the value of ListAttestorsResponse.next_page_token returned from the previous call to the `ListAttestors` method.gogol-binaryauthorizationRequested page size. The server may return fewer results than requested. If unspecified, the server will pick an appropriate default.gogol-binaryauthorizationJSONPgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVK gogol-binaryauthorizationXSets the access control policy on the specified resource. Replaces any existing policy.See:  smart constructor.gogol-binaryauthorizationA resource alias for 3binaryauthorization.projects.attestors.setIamPolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata.gogol-binaryauthorizationREQUIRED: The resource for which the policy is being specified. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONPgogol-binaryauthorizationgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV gogol-binaryauthorization`Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.See:  smart constructor.gogol-binaryauthorizationA resource alias for 9binaryauthorization.projects.attestors.testIamPermissions method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata.gogol-binaryauthorizationREQUIRED: The resource for which the policy detail is being requested. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONPgogol-binaryauthorizationgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV= gogol-binaryauthorizationFUpdates an attestor. Returns NOT_FOUND if the attestor does not exist.See:  smart constructor.gogol-binaryauthorizationA resource alias for -binaryauthorization.projects.attestors.update method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata.gogol-binaryauthorizationeRequired. The resource name, in the format: `projects/*/attestors/*`. This field may not be updated.gogol-binaryauthorizationJSONPgogol-binaryauthorizationgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVM gogol-binaryauthorization]Gets the policy for this project. Returns a default policy if the project does not have one.See:  smart constructor.gogol-binaryauthorizationA resource alias for &binaryauthorization.projects.getPolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationZRequired. The resource name of the policy to retrieve, in the format `projects/*/policy`.gogol-binaryauthorizationJSONPgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV gogol-binaryauthorization~Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.See:  smart constructor.gogol-binaryauthorizationA resource alias for 0binaryauthorization.projects.policy.getIamPolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationREQUIRED: The resource for which the policy is being requested. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONPgogol-binaryauthorization (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV gogol-binaryauthorizationXSets the access control policy on the specified resource. Replaces any existing policy.See:  smart constructor.gogol-binaryauthorizationA resource alias for 0binaryauthorization.projects.policy.setIamPolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata.gogol-binaryauthorizationREQUIRED: The resource for which the policy is being specified. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONPgogol-binaryauthorizationgogol-binaryauthorization   (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUV8  gogol-binaryauthorization`Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.See:   smart constructor. gogol-binaryauthorizationA resource alias for 6binaryauthorization.projects.policy.testIamPermissions method which the   request conforms to. gogol-binaryauthorizationCreates a value of  4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired:   gogol-binaryauthorizationV1 error format. gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata.gogol-binaryauthorizationREQUIRED: The resource for which the policy detail is being requested. See the operation documentation for the appropriate value for this field.gogol-binaryauthorizationJSONP gogol-binaryauthorizationgogol-binaryauthorization            (c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None "#.27=?HUVN gogol-binaryauthorization-Creates or updates a project's policy, and returns a copy of the new policy. A policy is always updated as a whole, to avoid race conditions with concurrent policy enforcement (or management!) requests. Returns NOT_FOUND if the project does not exist, INVALID_ARGUMENT if the request is malformed.See:  smart constructor.gogol-binaryauthorizationA resource alias for )binaryauthorization.projects.updatePolicy method which the  request conforms to.gogol-binaryauthorizationCreates a value of 4 with the minimum fields required to make a request.BUse one of the following lenses to modify other fields as desired: !gogol-binaryauthorizationV1 error format.gogol-binaryauthorization4Upload protocol for media (e.g. "raw", "multipart").gogol-binaryauthorizationOAuth access token.gogol-binaryauthorization=Legacy upload protocol for media (e.g. "media", "multipart").gogol-binaryauthorizationMultipart request metadata. gogol-binaryauthorizationlOutput only. The resource name, in the format `projects/*/policy`. There is at most one policy per project.!gogol-binaryauthorizationJSONPgogol-binaryauthorizationgogol-binaryauthorization  !  !(c) 2015-2016 Brendan HayMozilla Public License, v. 2.0.%Brendan Hay <brendan.g.hay@gmail.com>auto-generatednon-portable (GHC extensions)None.UVSU'gogol-binaryauthorizationhRepresents the entirety of the methods and resources available for the Binary Authorization API service.  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqwxyz{|}~      !'hef',-./+01234*5678)9(:;'<=>&?@ %ABCD$EF#GHIJ"KLMNO!PQ RSTUVWXYZ[\]^_`abcd` !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~                                        ! " # $ % & ' ( )*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqr6gogol-binaryauthorization-0.5.0-7185imJwSyI864RAKIEtW7(Network.Google.BinaryAuthorization.TypesENetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.CreateENetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.DeleteBNetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.GetKNetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.GetIAMPolicyCNetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.ListKNetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.SetIAMPolicyQNetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.TestIAMPermissionsENetwork.Google.Resource.BinaryAuthorization.Projects.Attestors.Update>Network.Google.Resource.BinaryAuthorization.Projects.GetPolicyHNetwork.Google.Resource.BinaryAuthorization.Projects.Policy.GetIAMPolicyHNetwork.Google.Resource.BinaryAuthorization.Projects.Policy.SetIAMPolicyNNetwork.Google.Resource.BinaryAuthorization.Projects.Policy.TestIAMPermissionsANetwork.Google.Resource.BinaryAuthorization.Projects.UpdatePolicy"Network.Google.BinaryAuthorization,Network.Google.BinaryAuthorization.Types.Sum0Network.Google.BinaryAuthorization.Types.ProductXgafvX1X2AdmissionRuleEvaluationModeEvaluationModeUnspecified AlwaysAllowRequireAttestation AlwaysDenyPkixPublicKeySignatureAlgorithmSignatureAlgorithmUnspecifiedRsaPss2048SHA256RsaPss3072SHA256RsaPss4096SHA256RsaPss4096SHA512RsaSignPKCS12048SHA256RsaSignPKCS13072SHA256RsaSignPKCS14096SHA256RsaSignPKCS14096SHA512EcdsaP256SHA256EcdsaP384SHA384EcdsaP521SHA512 PolicyGlobalPolicyEvaluationMode%GlobalPolicyEvaluationModeUnspecifiedEnableDisableAdmissionRuleEnforcementModeEnforcementModeUnspecifiedEnforcedBlockAndAuditLogDryrunAuditLogOnlyBindingAttestorPolicyClusterAdmissionRulesPolicyTestIAMPermissionsResponseAttestorPublicKey IAMPolicyTestIAMPermissionsRequest AdmissionRuleAdmissionWhiteListPatternListAttestorsResponseSetIAMPolicyRequestEmptyUserOwnedDrydockNoteExpr PkixPublicKey pkixPublicKeyppkPublicKeyPemppkSignatureAlgorithmexpr eLocation eExpressioneTitle eDescriptionuserOwnedDrydockNote!uodnDelegationServiceAccountEmailuodnPublicKeysuodnNoteReferenceemptysetIAMPolicyRequest siprPolicylistAttestorsResponselarNextPageToken larAttestorsadmissionWhiteListPatternawlpNamePattern admissionRulearEnforcementModearEvaluationModearRequireAttestationsBytestIAMPermissionsRequesttiprPermissions iamPolicyipEtag ipVersion ipBindingsattestorPublicKeyapkPkixPublicKeyapkAsciiArmoredPgpPublicKeyapkId apkCommenttestIAMPermissionsResponsetiamprPermissionspolicypDefaultAdmissionRulepAdmissionWhiteListPatternspClusterAdmissionRules pUpdateTimepNamepGlobalPolicyEvaluationMode pDescriptionpolicyClusterAdmissionRules pcarAddtionalattestoraUserOwnedDrydockNote aUpdateTimeaName aDescriptionbindingbMembersbRole bConditionbinaryAuthorizationServicecloudPlatformScopeProjectsAttestorsCreateProjectsAttestorsCreateResourceprojectsAttestorsCreate pacParentpacXgafvpacUploadProtocolpacAccessToken pacUploadType pacPayload pacAttestorId pacCallback&$fGoogleRequestProjectsAttestorsCreate$fEqProjectsAttestorsCreate$fShowProjectsAttestorsCreate$fDataProjectsAttestorsCreate $fGenericProjectsAttestorsCreateProjectsAttestorsDeleteProjectsAttestorsDeleteResourceprojectsAttestorsDeletepadXgafvpadUploadProtocolpadAccessToken padUploadTypepadName padCallback&$fGoogleRequestProjectsAttestorsDelete$fEqProjectsAttestorsDelete$fShowProjectsAttestorsDelete$fDataProjectsAttestorsDelete $fGenericProjectsAttestorsDeleteProjectsAttestorsGetProjectsAttestorsGetResourceprojectsAttestorsGetpagXgafvpagUploadProtocolpagAccessToken pagUploadTypepagName pagCallback#$fGoogleRequestProjectsAttestorsGet$fEqProjectsAttestorsGet$fShowProjectsAttestorsGet$fDataProjectsAttestorsGet$fGenericProjectsAttestorsGetProjectsAttestorsGetIAMPolicy%ProjectsAttestorsGetIAMPolicyResourceprojectsAttestorsGetIAMPolicy pagipXgafvpagipUploadProtocolpagipAccessTokenpagipUploadType pagipResource pagipCallback,$fGoogleRequestProjectsAttestorsGetIAMPolicy!$fEqProjectsAttestorsGetIAMPolicy#$fShowProjectsAttestorsGetIAMPolicy#$fDataProjectsAttestorsGetIAMPolicy&$fGenericProjectsAttestorsGetIAMPolicyProjectsAttestorsListProjectsAttestorsListResourceprojectsAttestorsList palParentpalXgafvpalUploadProtocolpalAccessToken palUploadType palPageToken palPageSize palCallback$$fGoogleRequestProjectsAttestorsList$fEqProjectsAttestorsList$fShowProjectsAttestorsList$fDataProjectsAttestorsList$fGenericProjectsAttestorsListProjectsAttestorsSetIAMPolicy%ProjectsAttestorsSetIAMPolicyResourceprojectsAttestorsSetIAMPolicy pasipXgafvpasipUploadProtocolpasipAccessTokenpasipUploadType pasipPayload pasipResource pasipCallback,$fGoogleRequestProjectsAttestorsSetIAMPolicy!$fEqProjectsAttestorsSetIAMPolicy#$fShowProjectsAttestorsSetIAMPolicy#$fDataProjectsAttestorsSetIAMPolicy&$fGenericProjectsAttestorsSetIAMPolicy#ProjectsAttestorsTestIAMPermissions+ProjectsAttestorsTestIAMPermissionsResource#projectsAttestorsTestIAMPermissions patipXgafvpatipUploadProtocolpatipAccessTokenpatipUploadType patipPayload patipResource patipCallback2$fGoogleRequestProjectsAttestorsTestIAMPermissions'$fEqProjectsAttestorsTestIAMPermissions)$fShowProjectsAttestorsTestIAMPermissions)$fDataProjectsAttestorsTestIAMPermissions,$fGenericProjectsAttestorsTestIAMPermissionsProjectsAttestorsUpdateProjectsAttestorsUpdateResourceprojectsAttestorsUpdatepauXgafvpauUploadProtocolpauAccessToken pauUploadType pauPayloadpauName pauCallback&$fGoogleRequestProjectsAttestorsUpdate$fEqProjectsAttestorsUpdate$fShowProjectsAttestorsUpdate$fDataProjectsAttestorsUpdate $fGenericProjectsAttestorsUpdateProjectsGetPolicyProjectsGetPolicyResourceprojectsGetPolicypgpXgafvpgpUploadProtocolpgpAccessToken pgpUploadTypepgpName pgpCallback $fGoogleRequestProjectsGetPolicy$fEqProjectsGetPolicy$fShowProjectsGetPolicy$fDataProjectsGetPolicy$fGenericProjectsGetPolicyProjectsPolicyGetIAMPolicy"ProjectsPolicyGetIAMPolicyResourceprojectsPolicyGetIAMPolicy ppgipXgafvppgipUploadProtocolppgipAccessTokenppgipUploadType ppgipResource ppgipCallback)$fGoogleRequestProjectsPolicyGetIAMPolicy$fEqProjectsPolicyGetIAMPolicy $fShowProjectsPolicyGetIAMPolicy $fDataProjectsPolicyGetIAMPolicy#$fGenericProjectsPolicyGetIAMPolicyProjectsPolicySetIAMPolicy"ProjectsPolicySetIAMPolicyResourceprojectsPolicySetIAMPolicy ppsipXgafvppsipUploadProtocolppsipAccessTokenppsipUploadType ppsipPayload ppsipResource ppsipCallback)$fGoogleRequestProjectsPolicySetIAMPolicy$fEqProjectsPolicySetIAMPolicy $fShowProjectsPolicySetIAMPolicy $fDataProjectsPolicySetIAMPolicy#$fGenericProjectsPolicySetIAMPolicy ProjectsPolicyTestIAMPermissions(ProjectsPolicyTestIAMPermissionsResource projectsPolicyTestIAMPermissions pptipXgafvpptipUploadProtocolpptipAccessTokenpptipUploadType pptipPayload pptipResource pptipCallback/$fGoogleRequestProjectsPolicyTestIAMPermissions$$fEqProjectsPolicyTestIAMPermissions&$fShowProjectsPolicyTestIAMPermissions&$fDataProjectsPolicyTestIAMPermissions)$fGenericProjectsPolicyTestIAMPermissionsProjectsUpdatePolicyProjectsUpdatePolicyResourceprojectsUpdatePolicypupXgafvpupUploadProtocolpupAccessToken pupUploadType pupPayloadpupName pupCallback#$fGoogleRequestProjectsUpdatePolicy$fEqProjectsUpdatePolicy$fShowProjectsUpdatePolicy$fDataProjectsUpdatePolicy$fGenericProjectsUpdatePolicyBinaryAuthorizationAPIBinding' _bCondition_bRole _bMembers Attestor' _aDescription_aName _aUpdateTime_aUserOwnedDrydockNotePolicyClusterAdmissionRules'_pcarAddtionalPolicy' _pDescription_pGlobalPolicyEvaluationMode_pName _pUpdateTime_pClusterAdmissionRules_pAdmissionWhiteListPatterns_pDefaultAdmissionRuleTestIAMPermissionsResponse'_tiamprPermissionsAttestorPublicKey' _apkComment_apkId_apkAsciiArmoredPgpPublicKey_apkPkixPublicKey IAMPolicy' _ipBindings _ipVersion_ipEtagTestIAMPermissionsRequest'_tiprPermissionsAdmissionRule'_arRequireAttestationsBy_arEvaluationMode_arEnforcementModeAdmissionWhiteListPattern'_awlpNamePatternListAttestorsResponse' _larAttestors_larNextPageTokenSetIAMPolicyRequest' _siprPolicyEmpty'UserOwnedDrydockNote'_uodnNoteReference_uodnPublicKeys"_uodnDelegationServiceAccountEmailExpr' _eDescription_eTitle _eExpression _eLocationPkixPublicKey'_ppkSignatureAlgorithm_ppkPublicKeyPem