googleapis · jskeet · Oct 23, 2024 · Oct 23, 2024 · Oct 23, 2024 · Oct 23, 2024
@@ -2654,7 +2654,7 @@
       }
     }
   },
-  "revision": "20240820",
+  "revision": "20241021",
   "rootUrl": "https://androidenterprise.googleapis.com/",
   "schemas": {
     "Administrator": {
@@ -4050,6 +4050,10 @@
           "$ref": "MaintenanceWindow",
           "description": "The maintenance window defining when apps running in the foreground should be updated."
         },
+        "policyId": {
+          "description": "An identifier for the policy that will be passed with the app install feedback sent from the Play Store.",
+          "type": "string"
+        },
         "productAvailabilityPolicy": {
           "description": "The availability granted to the device for the specified products. \"all\" gives the device access to all products, regardless of approval status. \"all\" does not enable automatic visibility of \"alpha\" or \"beta\" tracks. \"whitelist\" grants the device access the products specified in productPolicy[]. Only products that are approved or products that were previously approved (products with revoked approval) by the enterprise can be whitelisted. If no value is provided, the availability set at the user level is applied by default.",
           "enum": [

@@ -1168,7 +1168,7 @@
       }
     }
   },
-  "revision": "20240924",
+  "revision": "20241022",
   "rootUrl": "https://androidmanagement.googleapis.com/",
   "schemas": {
     "AdbShellCommandEvent": {
@@ -3087,7 +3087,7 @@
             "Personal usage restriction is not specified",
             "Personal usage is allowed",
             "Personal usage is disallowed",
-            "Device is not associated with a single user, and thus both personal usage and corporate identity authentication are not expected."
+            "Device is not associated with a single user, and thus both personal usage and corporate identity authentication are not expected. Important: This setting is mandatory for dedicated device enrollment and it is a breaking change. This change needs to be implemented before January 2025.For additional details see the dedicated device provisioning guide (https://developers.google.com/android/management/provision-device#company-owned_devices_for_work_use_only). "
           ],
           "type": "string"
         },
@@ -5800,7 +5800,7 @@
             "Personal usage restriction is not specified",
             "Personal usage is allowed",
             "Personal usage is disallowed",
-            "Device is not associated with a single user, and thus both personal usage and corporate identity authentication are not expected."
+            "Device is not associated with a single user, and thus both personal usage and corporate identity authentication are not expected. Important: This setting is mandatory for dedicated device enrollment and it is a breaking change. This change needs to be implemented before January 2025.For additional details see the dedicated device provisioning guide (https://developers.google.com/android/management/provision-device#company-owned_devices_for_work_use_only). "
           ],
           "type": "string"
         },

@@ -253,6 +253,12 @@
             "datasetId"
           ],
           "parameters": {
+            "accessPolicyVersion": {
+              "description": "Optional. The version of the access policy schema to fetch. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for conditional access policy binding in datasets must specify version 3. Dataset with no conditional role bindings in access policy may specify any valid value or leave the field unset. This field will be maped to [IAM Policy version] (https://cloud.google.com/iam/docs/policies#versions) and will be used to fetch policy from IAM. If unset or if 0 or 1 value is used for dataset with conditional bindings, access entry with condition will have role string appended by 'withcond' string followed by a hash value. For example : { \"access\": [ { \"role\": \"roles/bigquery.dataViewer_with_conditionalbinding_7a34awqsda\", \"userByEmail\": \"[email protected]\", } ] } Please refer https://cloud.google.com/iam/docs/troubleshooting-withcond for more details.",
+              "format": "int32",
+              "location": "query",
+              "type": "integer"
+            },
             "datasetId": {
               "description": "Required. Dataset ID of the requested dataset",
               "location": "path",
@@ -304,6 +310,12 @@
             "projectId"
           ],
           "parameters": {
+            "accessPolicyVersion": {
+              "description": "Optional. The version of the provided access policy schema. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. This version refers to the schema version of the access policy and not the version of access policy. This field's value can be equal or more than the access policy schema provided in the request. For example, * Requests with conditional access policy binding in datasets must specify version 3. * But dataset with no conditional role bindings in access policy may specify any valid value or leave the field unset. If unset or if 0 or 1 value is used for dataset with conditional bindings, request will be rejected. This field will be maped to IAM Policy version (https://cloud.google.com/iam/docs/policies#versions) and will be used to set policy in IAM.",
+              "format": "int32",
+              "location": "query",
+              "type": "integer"
+            },
             "projectId": {
               "description": "Required. Project ID of the new dataset",
               "location": "path",
@@ -382,6 +394,12 @@
             "datasetId"
           ],
           "parameters": {
+            "accessPolicyVersion": {
+              "description": "Optional. The version of the provided access policy schema. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. This version refers to the schema version of the access policy and not the version of access policy. This field's value can be equal or more than the access policy schema provided in the request. For example, * Operations updating conditional access policy binding in datasets must specify version 3. Some of the operations are : - Adding a new access policy entry with condition. - Removing an access policy entry with condition. - Updating an access policy entry with condition. * But dataset with no conditional role bindings in access policy may specify any valid value or leave the field unset. If unset or if 0 or 1 value is used for dataset with conditional bindings, request will be rejected. This field will be maped to IAM Policy version (https://cloud.google.com/iam/docs/policies#versions) and will be used to set policy in IAM.",
+              "format": "int32",
+              "location": "query",
+              "type": "integer"
+            },
             "datasetId": {
               "description": "Required. Dataset ID of the dataset being updated",
               "location": "path",
@@ -456,6 +474,12 @@
             "datasetId"
           ],
           "parameters": {
+            "accessPolicyVersion": {
+              "description": "Optional. The version of the provided access policy schema. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. This version refers to the schema version of the access policy and not the version of access policy. This field's value can be equal or more than the access policy schema provided in the request. For example, * Operations updating conditional access policy binding in datasets must specify version 3. Some of the operations are : - Adding a new access policy entry with condition. - Removing an access policy entry with condition. - Updating an access policy entry with condition. * But dataset with no conditional role bindings in access policy may specify any valid value or leave the field unset. If unset or if 0 or 1 value is used for dataset with conditional bindings, request will be rejected. This field will be maped to IAM Policy version (https://cloud.google.com/iam/docs/policies#versions) and will be used to set policy in IAM.",
+              "format": "int32",
+              "location": "query",
+              "type": "integer"
+            },
             "datasetId": {
               "description": "Required. Dataset ID of the dataset being updated",
               "location": "path",
@@ -1985,7 +2009,7 @@
       }
     }
   },
-  "revision": "20240919",
+  "revision": "20241013",
   "rootUrl": "https://bigquery.googleapis.com/",
   "schemas": {
     "AggregateClassificationMetrics": {
@@ -3165,6 +3189,10 @@
           "items": {
             "description": "An object that defines dataset access for an entity.",
             "properties": {
+              "condition": {
+                "$ref": "Expr",
+                "description": "Optional. condition for the binding. If CEL expression in this field is true, this access binding will be considered"
+              },
               "dataset": {
                 "$ref": "DatasetAccessEntry",
                 "description": "[Pick one] A grant authorizing all resources of a particular type in a particular dataset access to this dataset. Only views are supported for now. The role field is not required when this field is set. If that dataset is deleted and re-created, its access needs to be granted again via an update operation."

@@ -551,7 +551,7 @@
       }
     }
   },
-  "revision": "20240119",
+  "revision": "20241018",
   "rootUrl": "https://binaryauthorization.googleapis.com/",
   "schemas": {
     "AdmissionRule": {
@@ -589,7 +589,6 @@
           "type": "string"
         },
         "requireAttestationsBy": {
-          "description": "Optional. The resource names of the attestors that must attest to a container image, in the format `projects/*/attestors/*`. Each attestor must exist before a policy can reference it. To add an attestor to a policy the principal issuing the policy change request must be able to read the attestor resource. Note: this field must be non-empty when the evaluation_mode field specifies REQUIRE_ATTESTATION, otherwise it must be empty.",
           "items": {
             "type": "string"
           },

@@ -2183,7 +2183,7 @@
       }
     }
   },
-  "revision": "20240913",
+  "revision": "20241020",
   "rootUrl": "https://cloudchannel.googleapis.com/",
   "schemas": {
     "GoogleCloudChannelV1ActivateEntitlementRequest": {
@@ -5091,6 +5091,10 @@
           },
           "type": "array"
         },
+        "priceReferenceId": {
+          "description": "Optional. Price reference ID for the offer. Optional field only for offers that require additional price information. Used to guarantee that the pricing is consistent between quoting the offer and placing the order. Yet to be implemented: this field is currently not evaluated in the API if populated in a request.",
+          "type": "string"
+        },
         "provisionedService": {
           "$ref": "GoogleCloudChannelV1alpha1ProvisionedService",
           "description": "Output only. Service provisioning details for the entitlement.",

@@ -2013,9 +2013,64 @@
           }
         }
       }
+    },
+    "policies": {
+      "methods": {
+        "get": {
+          "description": "Get a Policy",
+          "flatPath": "v1beta1/policies/{policiesId}",
+          "httpMethod": "GET",
+          "id": "cloudidentity.policies.get",
+          "parameterOrder": [
+            "name"
+          ],
+          "parameters": {
+            "name": {
+              "description": "Required. The name of the policy to retrieve. Format: \"policies/{policy}\".",
+              "location": "path",
+              "pattern": "^policies/[^/]+$",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "v1beta1/{+name}",
+          "response": {
+            "$ref": "Policy"
+          }
+        },
+        "list": {
+          "description": "List Policies",
+          "flatPath": "v1beta1/policies",
+          "httpMethod": "GET",
+          "id": "cloudidentity.policies.list",
+          "parameterOrder": [],
+          "parameters": {
+            "filter": {
+              "description": "Optional. A CEL expression for filtering the results. Policies can be filtered by application with this expression: setting.name = 'settings/gmail.*' Policies can be filtered by setting type with this expression: setting.name = '*.service_status' A maximum of one of the above setting.name clauses can be used. Policies can be filtered by customer with this expression: customer = \"customers/{customer}\" Where `customer` is the `id` from the [Admin SDK `Customer` resource](https://developers.google.com/admin-sdk/directory/reference/rest/v1/customers). You may use `customers/my_customer` to specify your own organization. When no customer is mentioned it will be default to customers/my_customer. A maximum of one customer clause can be used. The above clauses can only be combined together in a single filter expression with the AND operator.",
+              "location": "query",
+              "type": "string"
+            },
+            "pageSize": {
+              "description": "Optional. The maximum number of results to return. The service may return fewer than this value. If omitted (or defaulted to zero) the server will default to 50. The maximum allowed value is 100, though requests with page_size greater than that will be interpreted as 100.",
+              "format": "int32",
+              "location": "query",
+              "type": "integer"
+            },
+            "pageToken": {
+              "description": "Optional. The pagination token received from a prior call to PoliciesService.ListPolicies to retrieve the next page of results. When paginating, all other parameters provided to `ListPoliciesRequest` must match the call that provided the page token.",
+              "location": "query",
+              "type": "string"
+            }
+          },
+          "path": "v1beta1/policies",
+          "response": {
+            "$ref": "ListPoliciesResponse"
+          }
+        }
+      }
     }
   },
-  "revision": "20241010",
+  "revision": "20241021",
   "rootUrl": "https://cloudidentity.googleapis.com/",
   "schemas": {
     "AddIdpCredentialOperationMetadata": {
@@ -4379,6 +4434,24 @@
       },
       "type": "object"
     },
+    "ListPoliciesResponse": {
+      "description": "The response message for PoliciesService.ListPolicies.",
+      "id": "ListPoliciesResponse",
+      "properties": {
+        "nextPageToken": {
+          "description": "The pagination token to retrieve the next page of results. If this field is empty, there are no subsequent pages.",
+          "type": "string"
+        },
+        "policies": {
+          "description": "The results",
+          "items": {
+            "$ref": "Policy"
+          },
+          "type": "array"
+        }
+      },
+      "type": "object"
+    },
     "ListUserInvitationsResponse": {
       "description": "Response message for UserInvitation listing request.",
       "id": "ListUserInvitationsResponse",
@@ -4805,6 +4878,70 @@
       },
       "type": "object"
     },
+    "Policy": {
+      "description": "A Policy resource binds an instance of a single Setting with the scope of a PolicyQuery. The Setting instance will be applied to all entities that satisfy the query.",
+      "id": "Policy",
+      "properties": {
+        "customer": {
+          "description": "Immutable. Customer that the Policy belongs to. The value is in the format 'customers/{customerId}'. The `customerId` must begin with \"C\" To find your customer ID in Admin Console see https://support.google.com/a/answer/10070793.",
+          "type": "string"
+        },
+        "name": {
+          "description": "Output only. Identifier. The [resource name](https://cloud.google.com/apis/design/resource_names) of the Policy. Format: policies/{policy}.",
+          "readOnly": true,
+          "type": "string"
+        },
+        "policyQuery": {
+          "$ref": "PolicyQuery",
+          "description": "Required. The PolicyQuery the Setting applies to."
+        },
+        "setting": {
+          "$ref": "Setting",
+          "description": "Required. The Setting configured by this Policy."
+        },
+        "type": {
+          "description": "Output only. The type of the policy.",
+          "enum": [
+            "POLICY_TYPE_UNSPECIFIED",
+            "SYSTEM",
+            "ADMIN"
+          ],
+          "enumDescriptions": [
+            "Unspecified policy type.",
+            "Policy type denoting the system-configured policies.",
+            "Policy type denoting the admin-configurable policies."
+          ],
+          "readOnly": true,
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "PolicyQuery": {
+      "description": "PolicyQuery",
+      "id": "PolicyQuery",
+      "properties": {
+        "group": {
+          "description": "Immutable. The group that the query applies to. This field is only set if there is a single value for group that satisfies all clauses of the query. If no group applies, this will be the empty string.",
+          "type": "string"
+        },
+        "orgUnit": {
+          "description": "Required. Immutable. Non-empty default. The OrgUnit the query applies to. This field is only set if there is a single value for org_unit that satisfies all clauses of the query.",
+          "type": "string"
+        },
+        "query": {
+          "description": "Immutable. The CEL query that defines which entities the Policy applies to (ex. a User entity). For details about CEL see https://opensource.google.com/projects/cel. The OrgUnits the Policy applies to are represented by a clause like so: entity.org_units.exists(org_unit, org_unit.org_unit_id == orgUnitId('{orgUnitId}')) The Group the Policy applies to are represented by a clause like so: entity.groups.exists(group, group.group_id == groupId('{groupId}')) The Licenses the Policy applies to are represented by a clause like so: entity.licenses.exists(license, license in ['/product/{productId}/sku/{skuId}']) The above clauses can be present in any combination, and used in conjunction with the &&, || and ! operators. The org_unit and group fields below are helper fields that contain the corresponding value(s) as the query to make the query easier to use.",
+          "type": "string"
+        },
+        "sortOrder": {
+          "description": "Output only. The decimal sort order of this PolicyQuery. The value is relative to all other policies with the same setting type within the whole customer. (there are no duplicates within this set).",
+          "format": "double",
+          "readOnly": true,
+          "type": "number"
+        }
+      },
+      "type": "object"
+    },
     "PosixGroup": {
       "description": "POSIX Group definition to represent a group in a POSIX compliant system. Caution: POSIX groups are deprecated. As of September 26, 2024, you can no longer create new POSIX groups. For more information, see https://cloud.google.com/identity/docs/deprecations/posix-groups",
       "id": "PosixGroup",
@@ -5019,6 +5156,25 @@
       "properties": {},
       "type": "object"
     },
+    "Setting": {
+      "description": "Setting",
+      "id": "Setting",
+      "properties": {
+        "type": {
+          "description": "Required. Immutable. The type of the Setting. .",
+          "type": "string"
+        },
+        "value": {
+          "additionalProperties": {
+            "description": "Properties of the object.",
+            "type": "any"
+          },
+          "description": "Required. The value of the Setting.",
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
     "SignInBehavior": {
       "description": "Controls sign-in behavior.",
       "id": "SignInBehavior",