docs: update docs (#916)
* fix: re-run script
* test: fix noxfile
diff --git a/docs/dyn/cloudasset_v1p1beta1.iamPolicies.html b/docs/dyn/cloudasset_v1p1beta1.iamPolicies.html
index 6a33f88..bb758b3 100644
--- a/docs/dyn/cloudasset_v1p1beta1.iamPolicies.html
+++ b/docs/dyn/cloudasset_v1p1beta1.iamPolicies.html
@@ -75,14 +75,14 @@
<h1><a href="cloudasset_v1p1beta1.html">Cloud Asset API</a> . <a href="cloudasset_v1p1beta1.iamPolicies.html">iamPolicies</a></h1>
<h2>Instance Methods</h2>
<p class="toc_element">
- <code><a href="#searchAll">searchAll(scope, pageToken=None, pageSize=None, query=None, x__xgafv=None)</a></code></p>
+ <code><a href="#searchAll">searchAll(scope, query=None, pageToken=None, pageSize=None, x__xgafv=None)</a></code></p>
<p class="firstline">Searches all the IAM policies under a given accessible CRM scope</p>
<p class="toc_element">
<code><a href="#searchAll_next">searchAll_next(previous_request, previous_response)</a></code></p>
<p class="firstline">Retrieves the next page of results.</p>
<h3>Method Details</h3>
<div class="method">
- <code class="details" id="searchAll">searchAll(scope, pageToken=None, pageSize=None, query=None, x__xgafv=None)</code>
+ <code class="details" id="searchAll">searchAll(scope, query=None, pageToken=None, pageSize=None, x__xgafv=None)</code>
<pre>Searches all the IAM policies under a given accessible CRM scope
(project/folder/organization). This RPC gives callers
especially admins the ability to search all the IAM policies under a scope,
@@ -97,6 +97,10 @@
* Folder number(such as "folders/1234")
* Project number (such as "projects/12345")
* Project id (such as "projects/abc") (required)
+ query: string, Optional. The query statement.
+Examples:
+* "policy:myuser@mydomain.com"
+* "policy:(myuser@mydomain.com viewer)"
pageToken: string, Optional. If present, retrieve the next batch of results from the preceding call to
this method. `page_token` must be the value of `next_page_token` from the
previous response. The values of all other method parameters must be
@@ -105,10 +109,6 @@
if a larger value is given. If set to zero, server will pick an appropriate
default. Returned results may be fewer than requested. When this happens,
there could be more results as long as `next_page_token` is returned.
- query: string, Optional. The query statement.
-Examples:
-* "policy:myuser@mydomain.com"
-* "policy:(myuser@mydomain.com viewer)"
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
@@ -121,23 +121,6 @@
"results": [ # A list of IamPolicy that match the search query. Related information such
# as the associated resource is returned along with the policy.
{ # The result for a IAM Policy search.
- "resource": "A String", # The [full resource
- # name](https://cloud.google.com/apis/design/resource_names#full_resource_name)
- # of the resource associated with this IAM policy.
- "explanation": { # Explanation about the IAM policy search result. # Explanation about the IAM policy search result. It contains additional
- # information to explain why the search result matches the query.
- "matchedPermissions": { # The map from roles to their included permission matching the permission
- # query (e.g. containing `policy.role.permissions:`). A sample role string:
- # "roles/compute.instanceAdmin". The roles can also be found in the
- # returned `policy` bindings. Note that the map is populated only if
- # requesting with a permission query.
- "a_key": { # IAM permissions
- "permissions": [ # A list of permissions. A sample permission string: "compute.disk.get".
- "A String",
- ],
- },
- },
- },
"project": "A String", # The project that the associated GCP resource belongs to, in the form of
# `projects/{project_number}`. If an IAM policy is set on a resource (like VM
# instance, Cloud Storage bucket), the project field will indicate the
@@ -156,10 +139,12 @@
# permissions; each `role` can be an IAM predefined role or a user-created
# custom role.
#
- # Optionally, a `binding` can specify a `condition`, which is a logical
- # expression that allows access to a resource only if the expression evaluates
- # to `true`. A condition can add constraints based on attributes of the
- # request, the resource, or both.
+ # For some types of Google Cloud resources, a `binding` can also specify a
+ # `condition`, which is a logical expression that allows access to a resource
+ # only if the expression evaluates to `true`. A condition can add constraints
+ # based on attributes of the request, the resource, or both. To learn which
+ # resources support conditions in their IAM policies, see the
+ # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
#
# **JSON example:**
#
@@ -176,7 +161,9 @@
# },
# {
# "role": "roles/resourcemanager.organizationViewer",
- # "members": ["user:eve@example.com"],
+ # "members": [
+ # "user:eve@example.com"
+ # ],
# "condition": {
# "title": "expirable access",
# "description": "Does not grant access after Sep 2020",
@@ -242,6 +229,9 @@
#
# If a policy does not include any conditions, operations on that policy may
# specify any valid version or leave the field unset.
+ #
+ # To learn which resources support conditions in their IAM policies, see the
+ # [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
"auditConfigs": [ # Specifies cloud audit logging configuration for this policy.
{ # Specifies the audit configuration for a service.
# The configuration determines which permission types are logged, and what
@@ -332,9 +322,17 @@
# of the `bindings` must contain at least one member.
{ # Associates `members` with a `role`.
"condition": { # Represents a textual expression in the Common Expression Language (CEL) # The condition that is associated with this binding.
- # NOTE: An unsatisfied condition will not allow user access via current
- # binding. Different bindings, including their conditions, are examined
- # independently.
+ #
+ # If the condition evaluates to `true`, then this binding applies to the
+ # current request.
+ #
+ # If the condition evaluates to `false`, then this binding does not apply to
+ # the current request. However, a different role binding might grant the same
+ # role to one or more of the members in this binding.
+ #
+ # To learn which resources support conditions in their IAM policies, see the
+ # [IAM
+ # documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
# syntax. CEL is a C-like expression language. The syntax and semantics of CEL
# are documented at https://github.com/google/cel-spec.
#
@@ -425,6 +423,23 @@
},
],
},
+ "resource": "A String", # The [full resource
+ # name](https://cloud.google.com/apis/design/resource_names#full_resource_name)
+ # of the resource associated with this IAM policy.
+ "explanation": { # Explanation about the IAM policy search result. # Explanation about the IAM policy search result. It contains additional
+ # information to explain why the search result matches the query.
+ "matchedPermissions": { # The map from roles to their included permission matching the permission
+ # query (e.g. containing `policy.role.permissions:`). A sample role string:
+ # "roles/compute.instanceAdmin". The roles can also be found in the
+ # returned `policy` bindings. Note that the map is populated only if
+ # requesting with a permission query.
+ "a_key": { # IAM permissions
+ "permissions": [ # A list of permissions. A sample permission string: "compute.disk.get".
+ "A String",
+ ],
+ },
+ },
+ },
},
],
"nextPageToken": "A String", # Set if there are more results than those appearing in this response; to get