use of io.envoyproxy.envoy.config.rbac.v3.Policy in project google-cloud-java by GoogleCloudPlatform.
the class SourceSnippets method getIamPolicySource.
// [END securitycenter_set_source_iam]
/**
* Get IAM policy for a source.
*
* @param sourceName The source to set IAM Policy for.
*/
// [START securitycenter_get_source_iam]
static Policy getIamPolicySource(SourceName sourceName) {
try (SecurityCenterClient client = SecurityCenterClient.create()) {
// Start setting up a request to get IAM policy for a source.
// SourceName sourceName = SourceName.of(/*organization=*/"123234324",/*source=*/
// "423432321");
GetIamPolicyRequest request = GetIamPolicyRequest.newBuilder().setResource(sourceName.toString()).build();
// Call the API.
Policy response = client.getIamPolicy(request);
System.out.println("Policy: " + response);
return response;
} catch (IOException e) {
throw new RuntimeException("Couldn't create client.", e);
}
}
use of io.envoyproxy.envoy.config.rbac.v3.Policy in project google-cloud-java by GoogleCloudPlatform.
the class ITTopicAdminClientSnippets method replaceTopicPolicyAndTestPermissionsIsSuccessful.
@Test
public void replaceTopicPolicyAndTestPermissionsIsSuccessful() throws Exception {
String topicName = topics[0];
topicAdminClientSnippets.createTopic(topicName);
Policy policy = topicAdminClientSnippets.replaceTopicPolicy(topicName);
assertNotNull(policy.getBindingsCount());
assertTrue(policy.getBindings(0).getRole().equalsIgnoreCase(Role.viewer().toString()));
assertTrue(policy.getBindings(0).getMembers(0).equalsIgnoreCase(Identity.allAuthenticatedUsers().toString()));
TestIamPermissionsResponse response = topicAdminClientSnippets.testTopicPermissions(topicName);
assertTrue(response.getPermissionsList().contains("pubsub.topics.get"));
}
use of io.envoyproxy.envoy.config.rbac.v3.Policy in project google-cloud-java by GoogleCloudPlatform.
the class ITTopicAdminClientSnippets method topicPolicyIsCorrectlyRetrieved.
@Test
public void topicPolicyIsCorrectlyRetrieved() throws Exception {
String topicName = topics[0];
topicAdminClientSnippets.createTopic(topicName);
Policy policy = topicAdminClientSnippets.getTopicPolicy(topicName);
assertNotNull(policy);
}
use of io.envoyproxy.envoy.config.rbac.v3.Policy in project google-cloud-java by GoogleCloudPlatform.
the class ITSubscriptionAdminClientSnippets method replaceSubscriptionPolicyAndTestPermissionsIsSuccessful.
@Test
public void replaceSubscriptionPolicyAndTestPermissionsIsSuccessful() throws Exception {
String topicName = topics[0];
String subscriptionName = subscriptions[0];
createSubscription(topicName, subscriptionName);
Policy policy = subscriptionAdminClientSnippets.replaceSubscriptionPolicy(subscriptionName);
assertNotNull(policy.getBindingsCount());
assertTrue(policy.getBindings(0).getRole().equalsIgnoreCase(Role.viewer().toString()));
assertTrue(policy.getBindings(0).getMembers(0).equalsIgnoreCase(Identity.allAuthenticatedUsers().toString()));
TestIamPermissionsResponse response = subscriptionAdminClientSnippets.testSubscriptionPermissions(subscriptionName);
assertTrue(response.getPermissionsList().contains("pubsub.subscriptions.get"));
}
use of io.envoyproxy.envoy.config.rbac.v3.Policy in project google-cloud-java by GoogleCloudPlatform.
the class SubscriptionAdminClientTest method setIamPolicyExceptionTest.
@Test
@SuppressWarnings("all")
public void setIamPolicyExceptionTest() throws Exception {
StatusRuntimeException exception = new StatusRuntimeException(Status.INVALID_ARGUMENT);
mockIAMPolicy.addException(exception);
try {
String formattedResource = SubscriptionName.create("[PROJECT]", "[SUBSCRIPTION]").toString();
Policy policy = Policy.newBuilder().build();
client.setIamPolicy(formattedResource, policy);
Assert.fail("No exception raised");
} catch (ApiException e) {
Assert.assertEquals(Status.INVALID_ARGUMENT.getCode(), e.getStatusCode());
}
}
Aggregations