Close httplib2 connections.
create(parent, body=None, kmsConfigId=None, x__xgafv=None)
Creates a new KMS config.
Warning! This operation will permanently delete the Kms config.
encrypt(name, body=None, x__xgafv=None)
Encrypt the existing volumes without CMEK encryption with the desired the KMS config for the whole region.
Returns the description of the specified KMS config by kms_config_id.
list(parent, filter=None, orderBy=None, pageSize=None, pageToken=None, x__xgafv=None)
Returns descriptions of all KMS configs owned by the caller.
Retrieves the next page of results.
patch(name, body=None, updateMask=None, x__xgafv=None)
Updates the Kms config properties with the full spec
verify(name, body=None, x__xgafv=None)
Verifies KMS config reachability.
close()
Close httplib2 connections.
create(parent, body=None, kmsConfigId=None, x__xgafv=None)
Creates a new KMS config.
Args:
parent: string, Required. Value for parent. (required)
body: object, The request body.
The object takes the form of:
{ # KmsConfig is the customer managed encryption key(CMEK) configuration.
"createTime": "A String", # Output only. Create time of the KmsConfig.
"cryptoKeyName": "A String", # Required. Customer managed crypto key resource full name. Format: projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{key}.
"description": "A String", # Description of the KmsConfig.
"instructions": "A String", # Output only. Instructions to provide the access to the customer provided encryption key.
"labels": { # Labels as key value pairs
"a_key": "A String",
},
"name": "A String", # Identifier. Name of the KmsConfig.
"serviceAccount": "A String", # Output only. The Service account which will have access to the customer provided encryption key.
"state": "A String", # Output only. State of the KmsConfig.
"stateDetails": "A String", # Output only. State details of the KmsConfig.
}
kmsConfigId: string, Required. Id of the requesting KmsConfig. Must be unique within the parent resource. Must contain only letters, numbers and hyphen, with the first character a letter, the last a letter or a number, and a 63 character maximum.
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # This resource represents a long-running operation that is the result of a network API call.
"done": True or False, # If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.
"error": { # The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). # The error result of the operation in case of failure or cancellation.
"code": 42, # The status code, which should be an enum value of google.rpc.Code.
"details": [ # A list of messages that carry the error details. There is a common set of message types for APIs to use.
{
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
],
"message": "A String", # A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
},
"metadata": { # Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
"name": "A String", # The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.
"response": { # The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
}
delete(name, x__xgafv=None)
Warning! This operation will permanently delete the Kms config.
Args:
name: string, Required. Name of the KmsConfig. (required)
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # This resource represents a long-running operation that is the result of a network API call.
"done": True or False, # If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.
"error": { # The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). # The error result of the operation in case of failure or cancellation.
"code": 42, # The status code, which should be an enum value of google.rpc.Code.
"details": [ # A list of messages that carry the error details. There is a common set of message types for APIs to use.
{
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
],
"message": "A String", # A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
},
"metadata": { # Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
"name": "A String", # The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.
"response": { # The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
}
encrypt(name, body=None, x__xgafv=None)
Encrypt the existing volumes without CMEK encryption with the desired the KMS config for the whole region.
Args:
name: string, Required. Name of the KmsConfig. (required)
body: object, The request body.
The object takes the form of:
{ # EncryptVolumesRequest specifies the KMS config to encrypt existing volumes.
}
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # This resource represents a long-running operation that is the result of a network API call.
"done": True or False, # If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.
"error": { # The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). # The error result of the operation in case of failure or cancellation.
"code": 42, # The status code, which should be an enum value of google.rpc.Code.
"details": [ # A list of messages that carry the error details. There is a common set of message types for APIs to use.
{
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
],
"message": "A String", # A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
},
"metadata": { # Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
"name": "A String", # The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.
"response": { # The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
}
get(name, x__xgafv=None)
Returns the description of the specified KMS config by kms_config_id.
Args:
name: string, Required. Name of the KmsConfig (required)
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # KmsConfig is the customer managed encryption key(CMEK) configuration.
"createTime": "A String", # Output only. Create time of the KmsConfig.
"cryptoKeyName": "A String", # Required. Customer managed crypto key resource full name. Format: projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{key}.
"description": "A String", # Description of the KmsConfig.
"instructions": "A String", # Output only. Instructions to provide the access to the customer provided encryption key.
"labels": { # Labels as key value pairs
"a_key": "A String",
},
"name": "A String", # Identifier. Name of the KmsConfig.
"serviceAccount": "A String", # Output only. The Service account which will have access to the customer provided encryption key.
"state": "A String", # Output only. State of the KmsConfig.
"stateDetails": "A String", # Output only. State details of the KmsConfig.
}
list(parent, filter=None, orderBy=None, pageSize=None, pageToken=None, x__xgafv=None)
Returns descriptions of all KMS configs owned by the caller.
Args:
parent: string, Required. Parent value (required)
filter: string, List filter.
orderBy: string, Sort results. Supported values are "name", "name desc" or "" (unsorted).
pageSize: integer, The maximum number of items to return.
pageToken: string, The next_page_token value to use if there are additional results to retrieve for this list request.
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # ListKmsConfigsResponse is the response to a ListKmsConfigsRequest.
"kmsConfigs": [ # The list of KmsConfigs
{ # KmsConfig is the customer managed encryption key(CMEK) configuration.
"createTime": "A String", # Output only. Create time of the KmsConfig.
"cryptoKeyName": "A String", # Required. Customer managed crypto key resource full name. Format: projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{key}.
"description": "A String", # Description of the KmsConfig.
"instructions": "A String", # Output only. Instructions to provide the access to the customer provided encryption key.
"labels": { # Labels as key value pairs
"a_key": "A String",
},
"name": "A String", # Identifier. Name of the KmsConfig.
"serviceAccount": "A String", # Output only. The Service account which will have access to the customer provided encryption key.
"state": "A String", # Output only. State of the KmsConfig.
"stateDetails": "A String", # Output only. State details of the KmsConfig.
},
],
"nextPageToken": "A String", # A token identifying a page of results the server should return.
"unreachable": [ # Locations that could not be reached.
"A String",
],
}
list_next()
Retrieves the next page of results.
Args:
previous_request: The request for the previous page. (required)
previous_response: The response from the request for the previous page. (required)
Returns:
A request object that you can call 'execute()' on to request the next
page. Returns None if there are no more items in the collection.
patch(name, body=None, updateMask=None, x__xgafv=None)
Updates the Kms config properties with the full spec
Args:
name: string, Identifier. Name of the KmsConfig. (required)
body: object, The request body.
The object takes the form of:
{ # KmsConfig is the customer managed encryption key(CMEK) configuration.
"createTime": "A String", # Output only. Create time of the KmsConfig.
"cryptoKeyName": "A String", # Required. Customer managed crypto key resource full name. Format: projects/{project}/locations/{location}/keyRings/{key_ring}/cryptoKeys/{key}.
"description": "A String", # Description of the KmsConfig.
"instructions": "A String", # Output only. Instructions to provide the access to the customer provided encryption key.
"labels": { # Labels as key value pairs
"a_key": "A String",
},
"name": "A String", # Identifier. Name of the KmsConfig.
"serviceAccount": "A String", # Output only. The Service account which will have access to the customer provided encryption key.
"state": "A String", # Output only. State of the KmsConfig.
"stateDetails": "A String", # Output only. State details of the KmsConfig.
}
updateMask: string, Required. Field mask is used to specify the fields to be overwritten in the KmsConfig resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # This resource represents a long-running operation that is the result of a network API call.
"done": True or False, # If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.
"error": { # The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). # The error result of the operation in case of failure or cancellation.
"code": 42, # The status code, which should be an enum value of google.rpc.Code.
"details": [ # A list of messages that carry the error details. There is a common set of message types for APIs to use.
{
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
],
"message": "A String", # A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
},
"metadata": { # Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
"name": "A String", # The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.
"response": { # The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
"a_key": "", # Properties of the object. Contains field @type with type URL.
},
}
verify(name, body=None, x__xgafv=None)
Verifies KMS config reachability.
Args:
name: string, Required. Name of the KMS Config to be verified. (required)
body: object, The request body.
The object takes the form of:
{ # VerifyKmsConfigRequest specifies the KMS config to be validated.
}
x__xgafv: string, V1 error format.
Allowed values
1 - v1 error format
2 - v2 error format
Returns:
An object of the form:
{ # VerifyKmsConfigResponse contains the information if the config is correctly and error message.
"healthError": "A String", # Output only. Error message if config is not healthy.
"healthy": True or False, # Output only. If the customer key configured correctly to the encrypt volume.
"instructions": "A String", # Output only. Instructions for the customers to provide the access to the encryption key.
}