binaryauthorization.v1 library Null safety
Binary Authorization API - v1
The management interface for Binary Authorization, a service that provides policy-based deployment validation and control for images deployed to Google Kubernetes Engine (GKE), Anthos Service Mesh, Anthos Clusters, and Cloud Run.
For more information, see cloud.google.com/binary-authorization/
Create an instance of BinaryAuthorizationApi to access these resources:
- An admission rule specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied.
- An admission allowlist pattern exempts images from checks by admission rules.
- Occurrence that represents a single "attestation".
- An attestor that attests to container image artifacts.
- An attestor public key that will be used to verify attestations signed by this attestor.
- The management interface for Binary Authorization, a service that provides policy-based deployment validation and control for images deployed to Google Kubernetes Engine (GKE), Anthos Service Mesh, Anthos Clusters, and Cloud Run.
members, or principals, with a
- An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources.
- Response message for BinauthzManagementService.ListAttestors.
- A public key in the PkixPublicKey format (see https://tools.ietf.org/html/rfc5280#section-22.214.171.124 for details).
- A policy for container image binary authorization.
Request message for
- An user owned Grafeas note references a Grafeas Attestation.Authority Note created by the user.
- Request message for ValidationHelperV1.ValidateAttestationOccurrence.
- Response message for ValidationHelperV1.ValidateAttestationOccurrence.
- Empty = $Empty
- A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs.
- Expr = $Expr
- Represents a textual expression in the Common Expression Language (CEL) syntax.
- Jwt = $Jwt
- Signature = $Signature
- Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy).
- TestIamPermissionsRequest = $TestIamPermissionsRequest00
Request message for
- TestIamPermissionsResponse = $PermissionsResponse
Response message for